Cyber Threat Hunting: 4 More Videos to Make You an (Even) Better Threat Hunter!
One thing every threat hunter finds out early on is that learning to hunt ain’t easy. There is a lot of great material out there that tends to focus on theory and strategy, but a lot less that gets into the weeds of threat hunting itself. We’ve put together 4 ... Read More
HermeticWiper
OVERVIEW The HermeticWiper malware variant was first identified by researchers from ESET and Broadcom’s Symantec on February 23, 2022 and has been observed attacking Ukrainian government and organizations during the tensions between Ukraine and Russia. The variant has been observed as a wiper, similar in purpose to the NotPetya attack ... Read More
Thinking Like a Threat Actor: Hunting the Ghost in the Machine
An advanced adversary has bypassed the perimeter defenses, moved inside the environment, and become a literal ghost in the machine, free to move from system to system…. searching for its next target. This is a scenario that every SOC fears, and it presents a daunting threat hunting challenge. But, as ... Read More
LockBit Ransomware
OVERVIEW LockBit is a ransomware variant that was first seen in September 2019, and has been prevalent in ransomware attacks ever since. The variant encrypts files using AES encryption and demands a large ransom for decryption, however, what sets it apart form other variants is how it functions. The LockBit ... Read More
Moving the Needle Forward on Threat Hunting
If you’ve been paying attention to the cyber security media and blogosphere throughout 2020 and 2021, you’ve heard the term “threat hunting” being used a lot. You’ve probably heard the definition, and about how it helps security teams, and how if you don’t have it, you’re behind the proverbial cyber-8 ball, ... Read More
Critical CVEs: Why Chasing Squirrels is Driving the Whole Industry Nuts
Published on January 6, 2022 Let’s face it: if you’ve been in the cyber security industry more than about 5 minutes, you’ve probably experienced the chaos that ensues when critical vulnerabilities, like zero days, are announced. The mayhem is always the same: CISOs scrambling to find out if their organization ... Read More
Log4j: Making the Case for Structured Hunting
As the year winds down, it was inevitable that someone was going to release something that was going to cause a bit of a panic before the New Year. What we didn’t know is just how big that panic could be with Log4j (aka Log4Shell, CVE-2021-44228). This is a relatively innocuous Java library that ... Read More
