The Gamaredon hacking group is now using a new set of malicious tools to compromise Microsoft Outlook as a way of sending spear-phishing emails to victims' contact lists, according to security firm ESET. This hacking group, which appears to have ties to Russia, has primarily targeted Ukraine for years.
The volume and sophistication of security attacks increase at a rate that makes it tough for SOCs to have people, processes and technologies in their right places. So what would the ideal SOC look like? Bruce Hembree of Palo Alto Networks discusses the way forward.
According to ESG research, almost two thirds (63%) of organizations say that cybersecurity analytics and operations is more difficult today than it was two years ago.
This report examines Securonix Security Operations & Analytics Platform with a focus on:
How the platform efficiently and effectively provides...
No matter the size or maturity of your Security Operations Center (SOC), a Managed Security Service Provider (MSSP) might be the right fit for your organization. However, finding the right MSSP partner is not always a straightforward or simple endeavor. There are several factors to consider, to name a few:
Can the...
For many cybercrime investigators, it's all about indicators of compromise - evidence that a crime has occurred. But what if you were to shift toward cataloging behaviors that could indicate an attack is ongoing or imminent? Sam Curry of Cybereason explains the IoB concept.
When it comes to threat hunting, what are the complementary uses of SIEM and EDR technologies? What are the unique use cases for each, and how can they coexist? Sam Curry of Cybereason shares tips in advance of a virtual roundtable discussion.
Maintaining effective monitoring and consistency is difficult when relying on human beings. There is an overwhelming amount of security alerts and there already is a gap in the number of tier-one security analysts to investigate those alerts that organizations can hire and afford. In normal times, analysts dislike...
If you don't have actionable insights to detect and respond to emerging and current threats, you're not reaping the rewards of modern security information event management (SIEM) technology. Find out what you (and your SIEM) are missing and how to harden your defenses.
Download your copy of "How to Uplevel Your...
Staying ahead of advanced cyberthreats is hard. And detecting unknown or hidden threats is even harder.
Outdated solutions struggle to detect risks posed by insider threats, laterally moving malware and compromised accounts, partly because they're not built for today's cyberthreats, but also because the software...
Triaging growing volumes of SOC telemetry is becoming increasingly untenable for security teams, says Cysiv CEO Partha Panda, who makes the case for SOC-as-a-Service offerings.
There is no shortage of declarations for revolutionary approaches to threat protection. There is one thing that the security community can agree on though: automation is essential.
In the latest Technical Review from Enterprise Strategy Group (ESG), they investigate how the Respond Analyst architecture functions as...
As the number and complexity of cyber-attacks continues to escalate, it is clear that traditional approaches to security operations are no longer enough.
Enterprises must embrace innovation to drive secure value to their organization with automation. The latest buzzword in the security lexicon - automation - has...
The Ponemon Institute surveyed IT and IT security practitioners in organizations that have a SOC and are knowledgeable about cybersecurity practices in their organizations.
The majority of surveyed organizations find their investments in SOCs to be expensive and yield mediocre results. Download the report to...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing cuinfosecurity.com, you agree to our use of cookies.
