In any given attack campaign, bad actors have a specific goal in mind. This goal could involve accessing a developer’s machine and stealing a project’s source code, sifting through a particular executive’s emails, or exfiltrating customer data from a server that’s responsible for hosting payment...
Most security operation centers face an overwhelming number of security alerts every day. Limited resources make it impossible to investigate them all, and most warnings are inaccurate false positives. Effective security alert triage – the process of quickly and accurately determining the severity of a...
False positives, those alarming notifications that turn out to be nothing at all, might initially seem like minor inconveniences, but they dramatically reduce the accuracy of security tools and create huge impediments for security analysts. Unable to remove the noise generated by numerous false positives,...
With the significant growth of the Android operating system, cybercriminals are increasingly using the platform for malicious purposes, and organizations can no longer ignore these threats. This post describes the most effective techniques for detecting Android-based malware, and thwarting it. In 2017, Android overtook Microsoft Windows...
Browser-based cyberthreats have become one of the biggest concerns facing cybersecurity professionals today. It’s critical for organizations to implement effective protection from these hard-to-detect attacks. Introduction Of all the software in use, browsers are the most exposed. They are constantly connecting to the outside world, and frequently...
Automated malware analysis systems (or sandboxes) are one of the latest weapons in the arsenal of security vendors. Such systems execute an unknown malware program in an instrumented environment and monitor their execution. While malware analysis sandbox systems have been used as part of the...
