Collaborate Disseminate
I am very glad to turn the page on 2021, however, I am not optimistic that 2022 will be remarkably better. I am hopeful that President Biden’s Executive Order 14028 and the Department of Homeland Security’s (DHS’s) Binding Operational Directive 22-01 (… Continue reading 2022 promises to be a challenging year for cybersecurity professionals
Which is more important for achieving organizational cybersecurity: security products or security people? The right answer to this (trick) question is that both are equally important. But while cybersecurity budgets are rising, most small and some mids… Continue reading How can SMBs extend their SecOps capabilities without adding headcount?
I have gone through the MITRE attack framework, and got to know it is a knowledge base of the adversaries tactics and techniques. But i do not know how to use it practically to detect attacks in the security operations centre i am trying t… Continue reading How to use MITRE ATT&CK to identify attacks in SOC
Today I got an alert on my Elastic SIEM that sysmon.exe has modified or created a root certificate.
I tried to look for the certificate thumbprint in the Microsoft trusted root program and could not find it there.
Is this legitimate behavi… Continue reading Is Sysmon.exe modifying root certificate legit activity
Ducen announces the successful completion of its SOC 1 Type I compliance. This attestation shows the company’s commitment to protecting their customers’ data and providing them with the reassurance, transparency, and peace of mind needed to… Continue reading Ducen completes SOC 1 Type I compliance to protect customers’ data against breaches and cyber attacks
Cyware revealed a research detailing the challenges affecting modern security operations teams and the negative business impact of siloed security operations. According to the study, conducted by Forrester Consulting, 71% of security leaders report the… Continue reading Siloed security data hamper the ability to achieve collective defense
Fugue announced support for Kubernetes security prior to deployment. Using policy as code automation built on the open source Regula policy engine, Fugue provides a unified platform for securing infrastructure as code (IaC) and cloud runtime environmen… Continue reading Fugue adds Kubernetes security checks for securing IaC and cloud runtime environments
HITRUST announced a major expansion of its assessment portfolio to raise the quality and efficiency of assurances across the spectrum of information assurance needs. HITRUST also is unveiling a new approach to streamline the exchange and consumption of… Continue reading HITRUST adds two offerings to aid in understanding control effectiveness and cyber preparedness
Fugue announced Fugue IaC, a unified platform for securing infrastructure as code (IaC) and cloud runtime environments using a single set of policies. Powered by a Unified Policy Engine, Fugue IaC saves cloud teams significant time and ensures consiste… Continue reading Fugue IaC platform empowers cloud teams to eliminate security gaps
In this interview with Help Net Security, Daniel Clayton, VP Global Security Services and Support at Bitdefender, talks about the cybersecurity skills shortage gap and the role of automation in improving the work of cybersecurity professionals. It is c… Continue reading Automation is not here to close the cybersecurity skills shortage gap, but it can help