15 Mar
Integrating CrowdStrike API to Automate Security Investigation and Response with No Code
The CrowdStrike’s Falcon platform provides protection on critical areas of enterprise risk including endpoints and cloud workloads, identity, and data. Its Endpoint Detection and Response capabilities not only provide alerts on discovered threats but also provide a holistic view of threats and intelligence across all the hosts. Therefore, it is very useful for the security
31 Jan
Talent Shortage 2022: Stretching Your Lean DevSecOps Team
[This is a guest post contributed by George Hamilton, director of product marketing at ChaosSearch. It was originally posted on the ChaosSearch blog here] The cybersecurity talent shortage is real. As of December 2021, a job-tracking database from the U.S. Commerce Department showed nearly 600,000 unfilled cybersecurity positions. And a 2021 study found that 57%
16 Aug
Artificial Intelligence for Cyber Security
The development of Artificial Intelligence has been one of the most impactful innovations in the past couple of years. It has and will continue to have significant transformational impact on technology as well as humans. With massive amount of data, AI enables machine to become smarter and more intelligent over time and perform tasks on
09 Aug
How to investigate DLP Alerts
Data loss prevention (DLP) contain a set of policies to enable company to protect sensitive data of the organization. By monitoring email traffic, web protocols, digital media, network traffic, printer, cloud traffic, company can detect, investigate, and block suspicious data leakage either caused by insider threat or external threat. Due to the complexity of IT
29 Jul
Efficient Security Alerts Management with AI and Automation
Security alerts are incredibly important to quickly detect cyber-attacks, but today’ssecurity defense products can generate thousands of security alerts on any given day, leaving security analysts at a loss of which alerts to respond to, and potentially missing the most important ones. Overwhelming of security alerts A study by the Ponemon Institute found that the average organization in
12 Jul
Top 5 free tools to defend against Ransomware Attack
Ransomware attacks are becoming more frequent, more damaging and more sophisticated. Besides other tips mentioned here, it is very important to detect ransomware quickly and remediate immediately. In this blog, we have collected 5 free tools to assist mitigating the risk of Ransomware Attacks faster. The list of tools cover different stages of defending against
03 Jul
Another Solarwinds attack? – REvil Ransomware hits Kaseya VSA users
Kaseya VSA is commonly used solutions by managed service providers to manage their clients which usually are SMB customers. On 7/2/2021, ~12 PM EST, an auto update in the product has delivered REvil ransomware. It means the managed service providers who have been infected are infecting their customers’ System. Here is what we know
12 May
Why You Need to Consider a Next Generation SOAR
These are highly challenging times in Cyber Security. The volume, complexity and sophistication of threats continues to increase at an alarming and exponential rate. Today, manually intensive and repeatable tasks and processes can’t scale, leaving security analysts overwhelmed and fatigued. In some cases, serious threats are potentially overlooked or not handled in a timely fashion;
15 Apr
Compromised Users
User security can be compromised for many reasons including weak passwords, use of common passwords across company, personal and social media sites, or data breaches from other sites. SIEM systems look for these but often generate an inordinate number of false positives, so Security Analysts aren’t sure which ones to focus on. Security Analysts need
15 Apr
Cloud Security Management
As organizations are moving to the cloud in record numbers, so are the number of cloud-related breaches as attackers increasingly exploit misconfiguration issues, leading to increased costs and exposure of valuable information. Despite detections of cloud misconfigurations being uploaded to a log management and security analytics platform (SIEM) every 15 minutes, most are often overlooked
15 Apr
Phishing Defense and Remediation
Phishing accounts for 90% of data breaches and is likely only to increase. It is affecting businesses of all sizes and in all industries, in some, Phishing 3-5 emails are reported every minute, completely overwhelming Security Analysts who are handling these manually. To counter this ongoing barrage of threats, organizations need to leverage an intelligent
Recent Posts
Recent Posts
Recent Comments
Leveraging AI To Reduce Risk of Ransomware
Top 5 free tools to defend against Ransomware Attack - AI-Based Analysis and Response