Top news of the week: 27.04.2021.
Mitre Attack
Monitoring Pulse Connect Secure With Splunk (CISA Emergency Directive 21-03)
Over the past few weeks, there has been increasing chatter regarding adversary groups exploiting multiple vulnerabilities in the Pulse Connect Secure (PCS) virtual private network (VPN) ...
"Winning" MITRE ATT&CK, Losing Sight Of Customers
We didn’t need to check the results of the MITRE ATT&CK Carbanak+FIN7 evaluation when they were released, since within minutes of being live, we already had an email from a vendor touting ...
10 Free Security Tools at Black Hat Asia 2021
Researchers are set to demonstrate a plethora of tools for conducting pen tests, vulnerability assessments, data forensics, and a wide range of other use cases.
sysmon-edr
Contribute to ion-storm/sysmon-edr development by creating an account on GitHub.
Senior Intelligence Analyst
Challenges You Will Solve We all face many threats and the threat landscape is constantly changing. The Red Canary Intelligence Team conducts in-depth analysis to provide context and help ...
Most common cyberattack techniques on Windows networks for 2020
Recent research breaks down the preferred techniques attackers use to gain access to Windows networks. Use this information to monitor your logs for these methods.
SUPERNOVA Redux, with a Generous Portion of Masquerading
A review of the Pulse Secure attack where the threat actor connected to the network via a the Pulse Secure virtual private network (VPN), moved laterally to its SolarWinds Orion server, ...
Behind the Scenes: The Making of an M-Trends Report
On this episode of our Eye on Security podcast, we offer folks a behind-the-scenes look at what goes into the making of our annual M-Trends report.