8 Signs of a Smartphone Hack
The more we depend on smartphones, the more attractive an attack vector they become. Android and iOS and devices have become common targets for cybercriminals, as people use them for work, communications, social media, travel, and important services like finance and healthcare.
Consistent security for industrial deployments with Palo Alto Networks PA-220R ruggedized appliance
The PA-220R is a next-generation, rugged firewall, what enables proper network security in severe, industrial environments, like power plants, manufacturing plants or oil or natural gas refineries. Due to its rugged design, it’s capable to endure heat, doesn’t contain moving parts and completely dust and interference proof.
What is SIEM and why is it important to organizations?
Today and in the evolving digital world, cyber-attacks are becoming more common and the amount of data organizations generate is too much to handle manually; therefore, organizations need a solution to monitor the systems and report suspicious activities. Among the array of security solutions available today, SIEM solutions are the most comprehensive choice for building threat intelligence capabilities.
Beginners Guide to Scripting with the MDATP API
Microsoft Defender Advanced Threat Protection is an enterprise endpoint security platform designed to help organizations to prevent, detect, investigate, and respond to advanced threats. The platform offers API endpoints through which you can manage most aspects of your MDAPT instance. In this post we will be taking a look at a simple example of how we can utilize the MDATP API in a script.
Protecting data under Azure, with MCAS+AIP integration
Nowadays (and usually) the biggest challenge in Cybersecurity is not just to protect the organization from outsider threats, but to protect them from themselves. Internal threats can come in many shapes and sizes, from bypassing internal protection elements for browsing prohibited content, to deliberately sabotaging systems and leaking data.
Various social engineering techniques aka „Layer 8” attack vectors
Information security is important for every organisation and individual. But there is a fake idea that they can protect their datas with the most expensive cyber security softwers and tools. Not taking into a consideration, that these softwers and tools are as much strong as the weakest link in their organisation. That’s actually the human. The naivety, kindness and curiosity can easily lead to the leak of critical information.
Why packet capture is an important tool in the threat hunting toolbelt
With IT security technology rapidly improving, an increasing number of organizations are turning towards analytics, AI, and automation to help with managing the complex task of detecting and remediating cyber-attacks as well as to assist in reducing dwell time. These tools are becoming increasingly advanced by the day, and have become the industry standard for IT security. On the other hand, many of the cybersecurity tools used nowadays utilize predefined rules and signatures to identify malicious activity.
How to detect Cobalt Strike Process Injection
The Cobalt Strike is a framework designed for adversary simulation. It is commonly used by penetration testers and red teams to test an organization’s resilience against targeted attacks. It can be configured using Malleable C&C profiles which can be used to customize the behavior of its beacon, giving users the ability to emulate the TTP’s of in the wild threat actors.
How to write a proper password policy and choosing a password management solution?
The proper password policy is just as important as any other IT security solution. The password policy determines what requirements a new password must meet and how long it will last. The following rules are recommended for a good password policy