Intelligence & Analytics April 30, 2020

Gain Visibility Into Operational Technology (OT) Environments With a Combined SOC

3 min read - Organizations can attain visibility into their operational technology (OT) environments by building out a combined OT/IT security operations center.

Threat Hunting March 18, 2020

Using Mystery Novel Techniques to Track Down Cyberthreats

3 min read - If you consider yourself a good sleuth who can predict the end of every Agatha Christie novel, you might have a knack for discovering the origins of cyberthreats.

November 5, 2019

Threat Actor Using C&C Server to Host Ransomware, POS Carding Malware and Other Threats

2 min read - A threat actor is targeting various organizations using a command-and-control (C&C) server that hosts samples of ransomware, point-of-sale (POS) carding malware and other digital threats.

CISO February 7, 2019

6 Steps Every New CISO Should Take to Set Their Organization Up for Success

4 min read - Starting a new job in the CISO role can feel overwhelming. But the time for security to be seen as a key player — and to have a major business impact — has never been better.

Cloud Security December 19, 2018

Enterprise Security: Cloud-y With a Chance of Data Breaches

3 min read - Companies should look for a cloud security solution that sits in front of the database and can send traffic to your existing tools without having to install any software on the database.

Incident Response December 6, 2018

5 More Retail Cybersecurity Practices to Keep Your Data Safe Beyond the Holidays

7 min read - These five retail cybersecurity tips will help organizations mitigate cyberattacks and provide customers with the safest shopping experience during the holiday season.

Intelligence & Analytics November 14, 2018

Why User Behavior Analytics Is an Application, Not a Cybersecurity Platform

3 min read - User behavior analytics (UBA) is a good application, but it isn't a replacement for SIEM. UBA is more accurately described as a cybersecurity application that can be added on top of an SIEM tool.

Intelligence & Analytics April 20, 2018

An Eagle Eye Over Network Security: Configuring Log Sources to Maximize SIEM Visibility

3 min read - To get the most out of an SIEM solution, analysts must properly configure their log sources to generate alerts when they stop reporting for certain periods of time, depending on their priority level.

Incident Response April 2, 2018

Reducing Dwell Time With Automated Incident Response

5 min read - As the threat landscape evolves, it is increasingly important for organizations large and small to invest in automated incident response solutions to reduce dwell time and eliminate alert fatigue.

Intelligence & Analytics November 21, 2017

Why Knock Innovation? SIEM Didn’t Die — It Evolved

3 min read - SIEM has evolved from its comparatively humble beginnings to integrate user behavior analysis and log management capabilities that are critical to any SOC.