Developing custom rules and alerts based on MITRE ATT&CK techniques and tactics
MITRE ATT&CK is a globally-accessible knowledge base of adversary tactics, ...
Using MITRE ATT&CK to enhance threat hunting and incident response
The MITRE ATT&CK framework is a widely-used threat modeling and analysis framework ...
What are the best measures to avoid APT attacks?
Advanced persistent threats (APTs) are cyber attacks that have the potential to cause the ...
What is ransomware and how does it work?
Ransomware is a type of malicious software or malware that restricts access to computer ...
Why cost is a barrier to good detection
It was Q3 of 2018, when we were running surveys across the globe, talking to analysts and ...
Opinion - Short term log retention has a problem
IMHO Retention of log events has not been discussed enough. In my interaction with ...
Threat Hunting: Methodologies, Tools, and Tips
Threat hunting is the practice of proactively and continuously searching for cyber ...