Windows Defender Firewall misconfigurations and GPOs: Connecting the dots

Many enterprises have a variety of aspects that make up their networks, like Windows Defender Firewall, GPOs, and an AD infrastructure. Vulnerabilities in any part of the network can have a domino effect; once the first domino falls, the entire trail will go down with it, which can cause irrevocable damage to your network.

Threat Informed Defense: Making ATT&CK Your Own

The MITRE ATT&CK framework is one of the most commonly used resources within the SafeBreach platform. At SafeBreach’s 2023 Validate Summit—an event that brings security experts together to discuss challenges and best practices in proactive cybersecurity—SafeBreach Co-Founder and CTO Itzik Kotler sat down with Frank Duff, the Chief Innovation Officer at Tidal Cyber, to discuss threat informed defense and MITRE ATT&CK.

Why are organizations failing to detect cybersecurity threats?

With the changing security landscape, the most daunting task for the CISO and CIO is to fight an ongoing battle against hackers and cybercriminals. Bad actors stay ahead of the defenders and are always looking to find new vulnerabilities and loopholes to exploit and enter the business network. Failing to address these threats promptly can have catastrophic consequences for the organization.

Improve your SecOps with Priam Cyber AI's AVA: an AI-driven Virtual Analyst

LimaCharlie is the SecOps Cloud Platform that allows security teams of all shapes and sizes to build the program they need, while not having to worry about scale and infrastructure woes. As a platform that fosters creation, we also encourage our users to develop their own extensions, services, and capabilities. Priam Cyber AI has done just that with AVA, a platform geared towards measuring and improving your security operations.

Unlocking the Full Financial and Technical Value of SASE

The world we inherited from legacy network and security vendors has led to architectures suffering from excessive complexity and costs while making life difficult for administrators and end users alike. Platform convergence aligns the most important networking and security controls, enabling organizations to consolidate vendors and achieve significant cost savings.

The Biggest Takeaways From SOC Analyst Appreciation Day 2023

SOC Analyst Appreciation (SAAD) Day 2023 has come and gone. With great speakers and great sessions, it was a can’t-miss event for SOC analysts and anyone else looking to better appreciate their SOCs and see what’s on the horizon for cybersecurity. But hey, we realize that despite your best efforts, some SOC teams and leaders couldn’t make it the day of.

Recapping NASCIO's 2023 Annual Conference: Workforce Shortages, AI, and Whole-of-State Cybersecurity

If you were at the National Association of State Chief Information Officers (NASCIO) conference in Minneapolis last week, you might have noticed a wide array of topics that were top-of-mind for state CIOs across the United States.

Cisco's Zero-Day Vulnerability (CVE-2023-20198)

Cisco has released a Product Security Incident Response Team (PSIRT) advisory regarding a zero-day vulnerability in the web UI feature of Cisco IOS XE software. Cisco has stated that the web-based user interface should never be accessible through the public internet, yet research indicates that more than 10,000 Cisco devices have been exploited by an unknown threat actor. This critical vulnerability is being tracked as CVE-2023-20198 and is currently undergoing investigation for active exploitation.