Threat hunting

Automate Forensics to Eliminate Uncertainty

Posted on May 5, 2025May 5, 2025 by Admin

At RSA Conference 2025, one theme echoed across the show floor: security teams don’t need more alerts—they need more certainty. As threats move faster and operations get leaner, organizations are shifting from reactive investigation to proactive, automated forensics. That’s why we’re excited to announce a major leap forward in Cisco XDR: automated forensics built into the detection and response workflow. The Modern SOC Struggles with Confidence, Not Just Complexity It’s no longer about just identifying suspicious activity….

Cisco Live Melbourne SOC Report

Posted on February 27, 2025February 27, 2025 by Admin

Executive Summary Cisco has long provided security services for third party events such as the Black Hat and RSA Conferences, as well as the Super Bowl and the Olympic games. These services come in the form of products (Cisco Security Cloud capabilities, including Umbrella, XDR, Malware Analytics, etc. plus Splunk Enterprise Security); and skilled Security Operations Centre (SOC) analysts, who build and operate the infrastructure and hunt for threats, from both inside and outside the…

Strengthen Your Security Operations: MITRE ATT&CK Mapping in Cisco XDR

Posted on May 20, 2024May 20, 2024 by Admin

In the intricate dance between cyber attackers and defenders, understanding adversary behavior is the difference between keeping up with sophisticated attacks or falling behind the evolving threat landscape. For security teams, this often feels like trying to navigate a maze blindfolded since adversaries typically have greater insights into defender strategies than defenders have into adversarial attacks. This lack of visibility can lead to reactive cybersecurity with ineffective security operations, poor incident response, and a weak…

Agniane Stealer: Information stealer targeting cryptocurrency users

Posted on February 16, 2024February 16, 2024 by Admin

The Agniane Stealer is an information-stealing malware mainly targeting the cryptocurrency wallets of its victims. It gained popularity on the internet starting in August 2023. Recently, we have observed a distinct campaign spreading it across our telemetry. Our recent study has led to the successful identification and detailed analysis of a previously unrecognized network URL pattern. Our researchers have recently uncovered more information on the malware’s methods for file collection and the intricacies of its…

4 Threat Hunting Techniques to Prevent Bad Actors in 2024

Posted on February 7, 2024February 7, 2024 by Admin

Today’s cybersecurity threats are highly sophisticated; bad actors are using technology like no-code malware and AI-generated phishing campaigns to breach company networks with alarming frequency. With traditional detection methods failing to adequately protect networks, data and users, security teams must take a more proactive approach to identifying threats. Threat hunting involves preemptively searching for threat indicators and potential vulnerabilities on the network that other tools missed. This guide discusses threat hunting techniques and solutions to…

What Is Cyber Threat Hunting? (Definition & How it Works)

Posted on January 31, 2024February 1, 2024 by Admin

Cyber threat hunting involves proactively searching for threats on an organization’s network that are unknown to (or missed by) traditional cybersecurity solutions. A recent report from Armis found that cyber attack attempts increased by 104% in 2023, underscoring the need for pre-emptive threat detection to prevent breaches. What is cyber threat hunting? Cyber threat hunting is a proactive security strategy that seeks to identify and eliminate cybersecurity threats on the network before they cause any…

Threat hunting

Automate Forensics to Eliminate Uncertainty

Cisco Live Melbourne SOC Report

Strengthen Your Security Operations: MITRE ATT&CK Mapping in Cisco XDR

Agniane Stealer: Information stealer targeting cryptocurrency users

4 Threat Hunting Techniques to Prevent Bad Actors in 2024

What Is Cyber Threat Hunting? (Definition & How it Works)

VMWARE

Helping Public Sector Organisations Define Cloud Strategy

How to change the VLAN ID of the Service Console in ESX from the command line/console

Cisco UCS and Vmware Interfaces (Vnics) HA Design Considerations

Troubleshooting network and TCP/UDP port connectivity issues on ESX/ESXi(2020669)

vSphere Client Parameters

Configuration Templates

CUE Licenses

Trouble shooting Unity Express with Call Manager Integeration & Operational Issues

CME Configuration Example: SIP Trunks to Viatalk and VoIP.ms

SIP Phone registration – CME Configuration

CUE Voicemail + VPIM networking (CUE to unity)