Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The MITRE ATT&CK framework documents 196 individual techniques and 411 sub-techniques that help organizations understand and respond to cyber threats. Organizations have made this framework central to strengthening their security posture against evolving cyber threats since its public release in 2015.

Discover how Active Directory Management Tools simplify IT operations, enhance security, automate tasks, and improve compliance. Learn why AD tools are essential for a secure and efficient IT environment.

Riscosity’s web application navigation menus have been redesigned to make common user workflows easier than ever. Users will benefit from the more intuitive layout that will allow them to get to where they need to go seamlessly.

We’re excited to share new updates and enhancements for February, including: For more information on these updates and others, please read the complete list below and follow the links for more detailed articles.

The Splunk Threat Research Team has identified a campaign targeting ISP infrastructure providers on the West Coast of the United States and the country of China. This mass exploitation campaign originates from Eastern Europe and uses simple tools that abuse victim’s computer processing power to install cryptomining payloads and binaries with diverse functions such as.

Managing configurations in a complex environment can be like playing a game of digital Jenga. Turning off one port to protect an application can undermine the service of a connected device. Writing an overly conservative firewall configuration can prevent remote workforce members from accessing an application that’s critical to getting their work done.

Researchers at ReliaQuest have published a report on a phishing breach in the manufacturing sector that went from initial access to lateral movement in just 48 minutes. The attackers began by swamping users with spam emails, then posed as tech support and offered assistance in stopping the flood of spam. “To gain entry into the organization’s network, the threat actor used social engineering and end-user manipulation,” the researchers write.

Threat response is a cornerstone of cloud security, but its roots lie in the early days of antivirus software. Back then, responding to threats was fairly linear and straightforward — stop the malicious process, quarantine it, remove or delete if necessary, and move on. However, modern cloud environments have revolutionized how threats operate, making it clear just how much the game has changed.

Cloud security teams are often faced with an onslaught of noise from their detection tooling, making it nearly impossible to distinguish truly malicious threats from benign behaviors. Many threats will go uninvestigated simply because there aren’t enough analysts for the sheer amount of alerts, leaving organizations exposed to potential breaches.