Devo Exchange - MITRE ATT&CK Adviser
Reading, understanding, and tracking alerts and log sources within the context of the MITRE ATT&CK framework is now possible in Devo with the MITRE ATT&CK Adviser application.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Detecting DNS Exfiltration with Splunk: Hunting Your DNS Dragons
Oh no! You’ve been hacked, and you have experts onsite to identify the terrible things done to your organization. It doesn’t take long before the beardy dude or cyber lady says, “Yeah...they used DNS to control compromised hosts and then exfiltrated your data.” As you reflect on this event, you think, “Did I even have a chance against that kind of attack?” Yes, you did because Splunk can be used to detect and respond to DNS exfiltration.
Authentication vs. Authorization
Authentication and authorization are two key processes that ensure only trustworthy and verified users can gain access to authorized system resources and data. They enable your organization’s information security — your ability to protect sensitive information against unauthorized access. Although these two processes are used interchangeably, they have several fundamental differences.
How Digital Fingerprinting Tracks, Identifies & Affects Us
At one time, the internet was seen as a place where users could remain anonymous: they could scroll from the privacy of their screen. Today, we know that’s no longer the case. In an attempt to sell more products, and create a personalized digital experience, tech firms, companies and advertisers track and analyze each user across the digital landscape. Privacy is still important to users: 90% of individuals in a recent global survey said online privacy was important to them.
Coffee Talk with SURGe: 2023-JUNE-13 Fortinet, Barracuda, MOVEit Transfer, CISA Directive, DPRK
Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news.
Patch Management Explained: Challenges, Best Practices & Steps
Patch management is the centralized control and automation of the patch deployment process — deploying patches — to multiple devices, operating systems, firmware, software and hardware endpoints in the IT network. But vulnerabilities are increasing at unseen rates. Over 65,000 new vulnerabilities in existing IT systems were discovered in 2022, which is a 21% increase from 2021. And that makes patch management all the more important.
Coffee Talk with SURGe: the Interview Series featuring Scott Roberts
Join Mick Baccio and special guest Scott Roberts, head of threat research at Interpres Security for an interview about Scott's career journey, how he's seen cybersecurity evolve over time, and his essay featured in the SURGe team's new book, Bluenomicon: The Network Defender’s Compendium.
Devo Exchange - MITRE content packs & alerts
With the ever-increasing need for strong threat detection and management activities, more and more organizations are incorporating the MITRE ATT&CK framework into their incident investigation systems. Devo Exchange provides a plethora of MITRE content, and replicates the MITRE ATTA&K Matrix and its comprehensive list of tactics and techniques.
Improving Cyber Resilience: How Logsign Unified SO Platform Outshines SIEM, SOAR, and XDR
What are the key differences between SIEM, SOAR, XDR & Logsign Unified SO Platform? SIEM, SOAR, XDR and Logsign USO Platform are all cybersecurity technologies that help organizations detect, investigate, and respond to cyber threats. However, they differ in their scope, capabilities, and focus. Here are the key differences between them.
Application Vulnerability Management: The Complete Guide
Enterprise software applications are sophisticated, incorporating various technologies and featuring complex integrations with third-party software applications and systems. Any security vulnerability in software components can bring severe consequences to the organization. That’s why it is critical to effectively manage application vulnerabilities. This article explores application vulnerability management, discussing its importance and best practices.