At its core, the DCSO Threat Detection & Hunting (TDH) service uses network security monitoring to protect organizations against both targeted attacks by advanced threat actors and annoyances that are best described as “commodity” crime ware. Continue reading “Evidence-based Visibility Debugging in Corporate Walled Garden Networks with Mauerspecht”
Infosecurity Europe 2019 – observations, scouting, and a recap
Recently, DCSO’s Technology Scouting and Evaluation (TSE) service visited the Infosecurity Europe conference in London. Infosecurity, also known as InfoSec, is a congress series for IT- and cyber-security vendors of all sizes and maturities. This particular event in London is the region’s largest, Continue reading “Infosecurity Europe 2019 – observations, scouting, and a recap”
16th German IT Security Congress
From May 21 to 23, 2019, DCSO’s Technology Scouting and Evaluation (TSE) team visited the 16th German IT Security Congress, which took place in Bonn-Bad Godesberg. The German Federal Office for Information Security (BSI) hosted the congress, which focused on “IT security as a prerequisite for Continue reading “16th German IT Security Congress”
Modern authentication services – More than passwords plus smart card
Passwords have been used to secure access to protected assets since ancient times. Despite many attempts to find a better solution, passwords are still the most widely used option for signing into services and applications in today’s digital era. Continue reading “Modern authentication services – More than passwords plus smart card”
Facebook Documents Leaked to UK Parliament
The year 2018 ended on a bitter note for Facebook when an extraordinary chain of events led to the U.K. Parliament getting hold of a treasure trove of internal Facebook documents. The documents shed light on conversations between executives on how to monetize Facebook users’ data. The executives also Continue reading “Facebook Documents Leaked to UK Parliament”
Enterprise Malware-as-a-Service: Lazarus Group and the Evolution of Ransomware
In an interesting twist to the use of ransomware, an attacker leveraged a vulnerability in a plug-in for a remote-monitoring tool, Kaseya VSA, to gain access to a small Managed Services Provider, and infect approximately 80 companies with the GandCrab ransomware. This is a notable shift in tactics for Continue reading “Enterprise Malware-as-a-Service: Lazarus Group and the Evolution of Ransomware”