threat hunting – Page 18 – WindowsTechs.com

How Open Security Can Make Threat Management More Efficient

Posted on December 10, 2020 by James Murphy

Security operations center (SOC) teams struggle with an array of challenges. Too many tools can make the work too complex; and recruiting and retaining personnel can be hard amidst a skills shortage. Experts need to focus on using their skills to their fullest. But, an open approach can improve threat management in a way that […]

The post How Open Security Can Make Threat Management More Efficient appeared first on Security Intelligence.

Continue reading How Open Security Can Make Threat Management More Efficient→

Why Network Data Should be the Foundation of Your Security Strategy

Posted on November 6, 2020 by Matt Alderman

The post Why Network Data Should be the Foundation of Your Security Strategy appeared first on Security Weekly. Continue reading Why Network Data Should be the Foundation of Your Security Strategy→

On Threat Detection Uncertainty

Posted on November 3, 2020 by Anton Chuvakin

My post “Why is Threat Detection Hard?” proved to be one of the most popular in recent history of my new blog. In this post, I wanted to explore a seemingly obvious, while surprisingly fascinating aspect of detection: uncertainty.
Uncertainty? Are you … Continue reading On Threat Detection Uncertainty→

Sysmon Endpoint Monitoring: Do You Really Need an EDR?

Posted on November 3, 2020 by Matt Alderman

The post Sysmon Endpoint Monitoring: Do You Really Need an EDR? appeared first on Security Weekly. Continue reading Sysmon Endpoint Monitoring: Do You Really Need an EDR?→

Threat Analysis: How the Rapid Evolution of Reporting Can Change Security

Posted on October 29, 2020 by Colin Connor

With the advancements in data reporting gleaned from security information and event management (SIEM) tools and adjacent solutions, every security team today can face information overload and paralysis. To gain clarity within this murk, the practice of threat analysis has emerged and continues to evolve with time. With it, security professionals can find and fix the […]

The post Threat Analysis: How the Rapid Evolution of Reporting Can Change Security appeared first on Security Intelligence.

Continue reading Threat Analysis: How the Rapid Evolution of Reporting Can Change Security→

The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 1

Posted on October 27, 2020 by Nathan Noll

They say, “Everything old is new again.” Or, if you are a Game of Thrones fan, “What is dead may never die.” For me, however, a mentor once told me, “Everyone is going forward. I’m going backward.” Enter NetSync… I find Twitter to be a good source for InfoSec tactics, techniques, and procedures (TTPs). Anytime…

The post The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 1 appeared first on TrustedSec.

Continue reading The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 1→

The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 1

Posted on October 27, 2020 by Nathan Noll

The post The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 1 appeared first on TrustedSec.

Continue reading The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 1→

The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 2

Posted on October 27, 2020 by Nathan Noll

This is a continuation of The Tale of the Lost, but not Forgotten, Undocumented NetSync (part 1) and in this section, we will look to answer: What are Some Early Indicators to Detect NetSync at the Host-based Level? What are Some Possible Controls to Deter NetSync? In an accompanying blog post, Wes Lambert (@therealwlambert) steps…

The post The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 2 appeared first on TrustedSec.

Continue reading The Tale of the Lost, but not Forgotten, Undocumented NetSync: Part 2→

Are Bug Bounty Programs Worth It?

Posted on October 12, 2020 by David Bisson

Bug bounty programs are on the rise, and participating security researchers earned big bucks as a result. According to a report released by HackerOne in February 2020, hackers had collectively earned approximately $40 million from those programs in 2019. This amount is nearly equal to the bounty totals hackers received for all preceding years combined. […]

The post Are Bug Bounty Programs Worth It? appeared first on Security Intelligence.

Continue reading Are Bug Bounty Programs Worth It?→

Autonomous Vehicle Security Needs From A Hacker’s Perspective

Posted on October 8, 2020 by Abby Ross

With connected cars becoming more common, the industry has more standards and options when it comes to autonomous vehicle security. Adam Laurie, known in hacker circles as Major Malfunction, leads X-Force Red’s automotive testing practice. He has seen firsthand how easy it can be to compromise an autonomous vehicle if strong security processes and controls […]

The post Autonomous Vehicle Security Needs From A Hacker’s Perspective appeared first on Security Intelligence.

Continue reading Autonomous Vehicle Security Needs From A Hacker’s Perspective→