The Attack Vectors to Know – Video Blog
When it comes to intelligence topics, a subject that people often hear about is attack vectors. Yet, attack vector is such a broad cybersecurity industry term. Most people may not really know what it means, and more importantly, what it means to them and why they need to be aware of the different types of…
Pattern Recognition, Analysis and Profiling for Investigations and Threat Hunting
We’ve received a few questions about what we cover in our Pattern Recognition, Analysis and Profiling class. If you are a cyber investigator or analyst – or any role that requires you to extract meaningful information for threat hunting or investigative activities – understanding how to efficiently and effectively identify patterns in huge volumes of data and…
Expanding Your Election Security Knowledge
Election security is more than understanding the technology, which on its own can be complex and at times confusing; it also includes understanding how to do things securely at every step of the election process. Many of the concerns during the Midterm Elections were amplified by the atmosphere of uncertainty around potential threats, confusion over…
7 Rules of Cybersecurity Threat Hunting
by Monty St John Threat hunting can and should be a part of your cybersecurity efforts, but idea of starting a threat hunting and monitoring program can be intimidating. Building a portfolio of threats to watch and determining how to manage the risks they pose to your organization is usually confusing, often misleading and just…
Your Incident Response Plan Depends on Knowing Your Attack Vectors
by Brian Engle, CISO Similar to businesses, attackers have goals that they set out to achieve. Depending on the attacker, the goals may vary, but ultimately to accomplish objectives an attacker has to utilize an attack vector to break through defenses. Network defenses and cybersecurity protections are the starting point for closing up potential attack…
DefCon’s Voting Village: Results and Impact
by Monty St John It’s been a few weeks since DefCon took place in Las Vegas, but the buzz from this year’s event can still be heard echoing throughout cybersecurity circles, particularly elections cybersecurity. Hackers were out in full force to try their hand at breaking into election machines through DefCon’s “Voting Village” this…
Assessments, the “sine qua non” of Security
by Monty St John Who’s gone to the doctor? Okay, raise your hands… wait — put them down, I can’t see them anyway. Why did you go to the doctor? Was it an annual checkup or did an event happen in life that prompted a check of your health? More likely than not an…
Decisions–Under the Microscope, in the Spotlight–Blinding Your Eyes to the Bigger Picture
by Monty St John As humans go, it doesn’t take us long to form an opinion or make a decision. We go with our gut an astonishing amount of times. Reflection, when done, seems to give unprecedented weight to the smallest of facts that resonate. In fact, Daniel Kahneman, a psychologist that won the Nobel…
More Organizations Are Recognizing the Seriousness of Cyber Threats and the Military Could Have the Answers
By Damon Fleury While the threat of cyber attacks is nothing new, the realization that a major attack could happen to any business, regardless of size or industry, is taking up increasing space on leadership radars. As companies collect more data and deepen dependence on digital networks and systems, all organizations fall into the category…
The Military-Grade Difference in Incident Response
by Brian Engle In support of an overarching information security program, a resilient, sustained incident response program comes from the organization developing the capability in conjunction with the incident response program. The incident response program involves activities that occur in advance of an actual incident event with the goal of ensuring that the organization is…
Contact CyberDefenses today to learn how we can help your company’s cybersecurity needs.