Top news of the week: 04.11.2021.
Mitre Attack
APTs, Teleworking, and Advanced VPN Exploits: The Perfect Storm
A Mandiant researcher shares the details of an investigation into the misuse of Pulse Secure VPN devices by suspected state-sponsored threat actors.
CISA’s Known Exploited Vulnerabilities Catalog and Splunk
Accompanying today’s announcement from CISA (BOD 22-01) and their new Known Exploited Vulnerabilities Catalog, SURGe and Splunk Threat Research Team (STRT) have coordinated to add ...
Biden’s cybersecurity executive order, a progress report
Of the 46 tasks President Biden mandated to protect digital government assets, 19 are now completed, though not all agencies have reported their progress.
From Zero to Domain Admin
This report will go through an intrusion from July that began with an email, which included a link to Google's Feed Proxy service that was used to download a malicious Word document. Upon ...
Security Pros Know What They Need to Do, But Constrained by Lack of Resources
A new survey report describes security teams as trapped by a lack of resources into continuing what they have been doing rather than migrating their efforts to what they believe they should ...
Google Cloud and Cybereason join forces to drive XDR Innovation
Cybereason and Google Cloud announced a joint collaboration between the two companies to create and bring to market unprecedented Extended Detection and
CISA and Partners Coordinate on Security, Combatting Misinformation for Election Day
CISA will host an election situational awareness room to coordinate with federal partners, state and local election officials, private sector election partners, and political organizations ...
Enabling the Cooperative Cybersecurity Ecosystem
CIS Chief Product Architect discusses how the Open Security Alliance helps enable the cooperative ecosystem.