Threat Detection

What is Threat Modelling? 10 Threat Identity Methods Explained

May 14, 2021 By Edward Kost In UpGuard

Threat modelling is a process for identifying potential threats to an organization's network security and all the vulnerabilities that could be exploited by those threats. Most security protocols are reactive - threats are isolated and patched after they've been injected into a system. Threat modelling, on the other hand, is a proactive approach to cybersecurity, whereby potential threats are identified and anticipated.

Read Post

UpGuard

Read more about What is Threat Modelling? 10 Threat Identity Methods Explained

What Is Threat Intelligence?

May 12, 2021 By Sumo Logic In Sumo Logic

It's one thing to detect a cyber attack. It's another to know what the attackers are trying to do, which tactics they are using, and what their next move is likely to be. Without that additional information, it's difficult to defend effectively against an attack. You can't reliably stop an attack if you are unable to put yourself in the mindset of the attackers. This is why threat intelligence plays a critical role in modern cybersecurity operations.

Read Post

Sumo Logic

Read more about What Is Threat Intelligence?

Arctic Wolf Managed Detection and Response

May 10, 2021 By Arctic Wolf In Arctic Wolf

The cybersecurity landscape constantly becomes more difficult to defend as devices proliferate and cyberthreats become more sophisticated. Organizations often rely on new tools to stay protected, but this approach can quickly spiral into a maze of complex products—a patchwork of controls that lack the holistic integrity for effective cybersecurity. Your search for the right solution shouldn't be this hard.

View Video

Arctic Wolf

Read more about Arctic Wolf Managed Detection and Response

Cloud Threats Memo: Staggering Statistics About Recent Cloud Misconfigurations

May 6, 2021 By Paolo Passeri In Netskope

Cloud misconfigurations continue to be a serious concern for organizations, and the list of security incidents caused by the exposure of data from Saas and IaaS applications only continues to grow.

Read Post

Netskope

Read more about Cloud Threats Memo: Staggering Statistics About Recent Cloud Misconfigurations

Securing AWS Management Configurations By Combating 6 Common Threats

Apr 28, 2021 By Ben Layer In Tripwire

There’s a common misconception that cloud providers handle security, a relic leftover from hosting providers of previous decades. The truth is, cloud providers use a shared responsibility model, leaving a lot of security up to the customer. Stories of AWS compromise are widespread, with attackers often costing organizations many thousands of dollars in damages.

Read Post

Tripwire

Read more about Securing AWS Management Configurations By Combating 6 Common Threats

Introducing Splunk Attack Range v1.0

Apr 16, 2021 By Splunk Threat Research Team In Splunk

The Splunk Attack Range project has officially reached the v1.0 release. By achieving this milestone, we wanted to reflect on how we got here, what features we’ve built for v1.0 and what the future looks like for Splunk Attack Range. What is the Splunk Attack Range? 🧐

Read Post

Splunk

Read more about Introducing Splunk Attack Range v1.0

Unified threat detection for AWS cloud and containers

Mar 30, 2021 By Vicente Herrera García In Sysdig

Implementing effective threat detection for AWS requires visibility into all of your cloud services and containers. An application is composed of a number of elements: hosts, virtual machines, containers, clusters, stored information, and input/output data streams. When you add configuration and user management to the mix, it’s clear that there is a lot to secure!

Read Post

Sysdig

Read more about Unified threat detection for AWS cloud and containers

Detecting Cobalt Strike with memory signatures

Mar 16, 2021 By Joe Desimone In Elastic

At Elastic Security, we approach the challenge of threat detection with various methods. Traditionally, we have focused on machine learning models and behaviors. These two methods are powerful because they can detect never-before-seen malware. Historically, we’ve felt that signatures are too easily evaded, but we also recognize that ease of evasion is only one of many factors to consider.

Read Post

Elastic

Read more about Detecting Cobalt Strike with memory signatures

Host-based Intrusion Detection System - Overview and HIDS vs NIDS

Feb 18, 2021 By Harman Singh In Cyphere

Although a business appears to make every effort to protect its assets, there is still no security guarantee. Hackers being fully aware of this uncertainty, tend to take complete advantage by tricking users or bypassing restrictions of the technology products in use, allowing them to acquire complete access. Such perils have given rise to the necessity of having a proactive approach towards cyber security to identify, prepare and respond to events.

Read Post

Cyphere

Read more about Host-based Intrusion Detection System - Overview and HIDS vs NIDS

How The Dark Web Continues to Threaten Businesses

Feb 16, 2021 By SecuritySenses In SecuritySenses

The Internet is a massive space. Seven days a week, millions of web sites, files, and servers run 24 hours a day. Even so, it is just the tip of the iceberg that we surf and the visible websites that can be accessed using search engines such as Google and Yahoo. The Deep Web, which makes up approximately 90 percent of all websites, is underneath the ground. This hidden network is so massive that it is difficult to figure out at any given time how many pages or sites are currently involved.

Read Post