Organizations deploying deception technology must make sure to integrate it with other technologies to reap the full benefits of intrusion alerts, says Anuj Tewari, global CISO at IT Services HCL Technologies.
The Gamaredon hacking group is now using a new set of malicious tools to compromise Microsoft Outlook as a way of sending spear-phishing emails to victims' contact lists, according to security firm ESET. This hacking group, which appears to have ties to Russia, has primarily targeted Ukraine for years.
The volume and sophistication of security attacks increase at a rate that makes it tough for SOCs to have people, processes and technologies in their right places. So what would the ideal SOC look like? Bruce Hembree of Palo Alto Networks discusses the way forward.
This whitepaper outlines how a multi-layered approach can enable teams to detect malicious activity across the attack chain for known and unknown threats.
According to ESG research, almost two thirds (63%) of organizations say that cybersecurity analytics and operations is more difficult today than it was two years ago.
This report examines Securonix Security Operations & Analytics Platform with a focus on:
How the platform efficiently and effectively provides...
No matter the size or maturity of your Security Operations Center (SOC), a Managed Security Service Provider (MSSP) might be the right fit for your organization. However, finding the right MSSP partner is not always a straightforward or simple endeavor. There are several factors to consider, to name a few:
Can the...
For many cybercrime investigators, it's all about indicators of compromise - evidence that a crime has occurred. But what if you were to shift toward cataloging behaviors that could indicate an attack is ongoing or imminent? Sam Curry of Cybereason explains the IoB concept.
When it comes to threat hunting, what are the complementary uses of SIEM and EDR technologies? What are the unique use cases for each, and how can they coexist? Sam Curry of Cybereason shares tips in advance of a virtual roundtable discussion.
Organizations need to know that they're safe - now. Breach
and Attack Simulation (BAS) addresses this need, making
it an essential addition to SOC teams.
Download this guide to learn more about BAS can: .
Unify actionable information
Enrich event and alert data while prioritizing them accurately
Validate...
Maintaining effective monitoring and consistency is difficult when relying on human beings. There is an overwhelming amount of security alerts and there already is a gap in the number of tier-one security analysts to investigate those alerts that organizations can hire and afford. In normal times, analysts dislike...
If you don't have actionable insights to detect and respond to emerging and current threats, you're not reaping the rewards of modern security information event management (SIEM) technology. Find out what you (and your SIEM) are missing and how to harden your defenses.
Download your copy of "How to Uplevel Your...
Staying ahead of advanced cyberthreats is hard. And detecting unknown or hidden threats is even harder.
Outdated solutions struggle to detect risks posed by insider threats, laterally moving malware and compromised accounts, partly because they're not built for today's cyberthreats, but also because the software...
Triaging growing volumes of SOC telemetry is becoming increasingly untenable for security teams, says Cysiv CEO Partha Panda, who makes the case for SOC-as-a-Service offerings.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.com, you agree to our use of cookies.
