Top news of the week: 30.09.2021.
Mitre Attack
MITRE ATT&CK, VERIS frameworks integrate for better incident insights
The MITRE ATT&CK/VERIS collaboration aims to create a common dictionary for communicating information about security incidents.
How to choose an endpoint protection suite
Endpoint protection has come a long way since the days of dedicated antivirus servers. Here are the basic and more advanced features to look for in an enterprise endpoint protection suite.
Collection of Event ID resources useful for Digital Forensics and Incident Response
Collection of Event ID ressources useful for Digital Forensics and Incident Response - GitHub - stuhli/awesome-event-ids: Collection of Event ID ressources useful for Digital Forensics and ...
SuperMem: A Free CrowdStrike Incident Response Tool for Automating Memory Image Processing
Learn why we created SuperMem, an open-source Windows memory processing script that helps investigators quickly process memory samples in their investigations.
How to Use NeuVector with the MITRE ATT&CK Framework
SecurityWeek Briefing: Wednesday, September 29, 2021 Russia Detains Head of Cybersecurity Firm Group-IB | How to Spot an Ineffective Security Practitioner Visit SecurityWeek.Com | Advertise ...
Threat hunting: from SolarWinds to Hafnium APT
From the latest big events of the year, the SolarWinds supply chain attack and Proxylogon vulnerability exploitation by the Hafnium threat actor, we can learn how threat hunting …
Welcome to A New Era of Cyber Illusions
Cyber attackers have evolved to use manipulation and trickery to distort our data, forcing us to question the basic integrity of our digital reality.
Detect Adversary Behavior in Real Time With CrowdStrike Falcon Horizon and Amazon EventBridge
This blog outlines the challenge of traditional log-based security monitoring and how CrowdStrike and Amazon EventBridge enable high-speed event-driven detections.