Tracking cyber exposure requires detailed investigation to understand how a network has been breached and what data has been exposed to attackers. The following post explains how CYDEF investigates cyber exposure using our proprietary tool, SMART-Sentinel. 2020: Ending with a Surge of Breaches In the final months of 2020, global networks were inundated by a
Adrozek, a drive by download attack, may be impacting your business’s browsers. From desktops to laptops to mobile devices, your endpoint security should be assessed. Detecting Adrozek’s Malicious Adware On December 10th, 2020, Microsoft announced detection of the malicious adware Adrozek on a variety of browsers, including Microsoft Edge, Google Chrome, Yandex Browser, and Mozilla
Prevention is Not the (Only) Cure Risk management is the strongest cybersecurity tactic, outweighing the roles of prevention and detection. Our clients often indicate they’re looking for a solution that detects and blocks threats, while preventing infection. This may seem perfectly natural upon first glance. After all, what’s the point of detecting malware once your network is infected? An
On the Relationship Between Cheese and Risk In cybersecurity, there is a lot of talk of “defence in depth”, but sometimes it is unclear what people mean… or why you should care. This post answers questions about the concept of “defence in depth”, with unexpected help from a famous cheese family. What is defence in depth? Like many concepts in cybersecurity, defence in
Secure access, secure edge (SASE) is the hot ticket cybersecurity. Do you understand the benefits? Introducing: SASE Whenever sales of security products dip, vendors leverage buzzwords in an effort to explain business problems. They push the buzzword hard for a short while, just long enough for people to buy it and figure out the claims
A discussion of The Law of Diminishing Returns and Cybersecurity Investment. The Cybersecurity Price Quandary A reasonably good anti-virus product with a bundled firewall can be acquired for less than a dollar per month. Some companies pay double that for an advanced endpoint detection product or a managed detection service. Larger companies frequently spend thousands
The more endpoint breach alerts that sound, the less responsive a cybersecurity team becomes. The likelihood of an endpoint breach increases. Distinguishing Important Alerts from Noise Everyone experiences alert fatigue. Alert fatigue is such a common problem that it dates as far back as Aesop’s Fable from the 6th century BC: There once was a shepherd
An analysis of Dridex, the 'banking' malware that steals credentials AND grows more sophisticated/discrete over time. How CYDEF Responded to a Dridex Attack The Dridex trojan posed a significant threat to major financial institutions since its identification in 2011. Unlike most malware, Dridex continuously evolves, growing more sophisticated over time and escaping detection by hiding
As Managed Service Providers (MSPs) grow increasingly popular amongst small and medium businesses, they’ve also become a target for cybercriminals. In 2019, at least 13 MSPs were hacked. Successfully breaching an MSP’s environment provides attackers with access to corporate data from a range of enterprises – a veritable boon of sensitive information. Vulnerability Management Required
An analysis of Astaroth, the info-stealing malware that uses multiple fileless techniques to install on a computer and steal passwords. Malware of the day: Astaroth Whenever a new malware or a novel attack technique is discovered, our clients worry about how it could affect them. Many come to us asking: “Am I protected against this
