Hot Topics

video

Screenshot of original infection email from Unit 42

Emotet C2 and Spam Traffic Video

| | 37cdab6ff1bd1c195bacb776c5213bf2, 51c64c77e60f3980eea90869b68c58a8, C2, Command And Control, ec74a5c51106f0419184d0dd08fb05bc, Emotet, fd4bc6cea4877646ccd62f0792ec0b62, JA3, JA3S, pcap, smtp, SMTPS, Spam, spambot, STARTTLS, video, videotutorial, Windows Sandbox
This video covers a life cycle of an Emotet infection, including initial infection, command-and-control traffic, and spambot activity sending emails with malicious spreadsheet attachments to infect new victims. The video cannot be ...
NETRESEC Network Security Blog
Why a U.S. City Chose MixMode and Decommissioned their UBA Platform

Video: Why a U.S. City Chose MixMode and Decommissioned their UBA Platform

| | Blog, case-study, CISO, SIEM, SOC, UBA, video
MixMode’s Head of Sales and Alliances, Geoff Coulehan, shares how MixMode was able to identify critical risk factors coming from inside bad actors that had gone undetected by a large U.S. city’s ...
MixMode
The Multiplying Costs and Challenges of Data Storage and Retention in Legacy Cybersecurity Platforms

VIDEO: The Multiplying costs and challenges of Data Storage and Retention in Legacy Cybersecurity Platforms

| | Blog, Cybersecurity News, Data Storage Cost, MixMode News, Self-Supervised AI, Third Wave AI, video
MixMode's Head of Sales and Alliances, Geoff Coulehan, discusses the data retention cost and challenges that arise when legacy cybersecurity platforms require historical data to be organized in a proprietary format for ...
MixMode
What are the Limits with Rules-Based Cybersecurity Systems

Video: The Limits of Rules-BasED Cybersecurity Systems

| | Blog, rules-based cybersecurity, Third Wave AI, video
MixMode's CTO and Chief Scientist, Dr. Igor Mezic, discusses the challenges of rules-based cybersecurity systems. He focuses on the workflow issues for security analysts that operate in first and second-wave AI (rules-based) ...
MixMode
Video: Google Cloud and Cybereason Shift the XDR Paradigm to 'Detect and Anticipate'

Video: Google Cloud and Cybereason Shift the XDR Paradigm to ‘Detect and Anticipate’

| | cloud computing, Cloud Security, Cybereason XDR Platform, Cybereason XDR powered by Chronicle, Extended Detection and Response, google, Google Chronicle, google cloud, Prediction Algorithm, video, VideosCat, XDR
Cybereason and Google Cloud recently entered into a strategic partnership to bring to market a joint solution, Cybereason XDR powered by Chronicle, in support of our joint mission to reverse the adversary ...
Blog
The Exponential Data Problem with Legacy Cybersecurity Tool Stacks

Video: The Exponential Data Problem with Legacy Cybersecurity Tool Stacks

| | Blog, Data Overload, log data, MixMode News, MixMode Platform, video
MixMode’s Head of Sales and Alliances, Geoff Coulehan, understands first-hand the challenges current and incoming MixMode customers are facing with their unwieldy cybersecurity tool stacks ...
MixMode
SEC-T 0x0D: Erik Hjelmvik - Hiding in Plain Sight - How the SolarWinds Hack Went Undetected

How the SolarWinds Hack (almost) went Undetected

| | ascii-art, backdoor, C2, dns, SEC-T, SolarWinds, Solorigate, Stage 2, STAGE2, SUNBURST, video, YouTube
My lightning talk from the SEC-T 0x0D conference has now been published on YouTube. This 13 minute talk covers tactics and techniques that the SolarWinds hackers used in order to avoid being ...
NETRESEC Network Security Blog
Parameters tab in NetworkMiner

Start Menu Search Video

| | Bing, bing.com, Cortana, HTTP/2, http2, Microsoft, NetworkMiner, pcap, PCAP-over-IP, pcapoverip, PolarProxy, Privacy, Start Menu, video, videotutorial, www.bing.com
In this video I demonstrate that text typed into the Windows 10 start menu gets sent to Microsoft and how that traffic can be intercepted, decrypted and parsed. The video cannot be ...
NETRESEC Network Security Blog
ASCII Network Flow Chart

Walkthrough of DFIR Madness PCAP

| | ascii-art, CapLoader, case001.pcap, DFIR Madness, dfirmadness, NetworkMiner, pcap, video, videotutorial
I recently came across a fantastic digital forensics dataset at dfirmadness.com, which was created by James Smith. There is a case called The Stolen Szechuan Sauce on this website that includes forensic ...
NETRESEC Network Security Blog
Cybereason vs. REvil Ransomware: The Kaseya Chronicles

Cybereason vs. REvil Ransomware: The Kaseya Chronicles

| | Anti-Ransomware, antivirus, Cybereason Anti-Ransomware Solution, Cybereason Defense Platform, endpoint detection and response, Endpoint Protection Platform, Extended Detection and Response, Kaseya Attacks, managed security services provider, Next Generation Antivirus, ngav, Nocturnus, Ransomware, research, ResearchCat, rEvil, risk management, Sodinokibi, Supply Chain Attacks, Unified Endpoint Security, video, VideosCat
As a spate of ransomware attacks continue to dominate the headlines in recent months, the infamous REvil ransomware gang has upped the ante significantly with a wide ranging operation that is suspected ...
Blog
Load more