threat intelligence

5 ways intelligence professionals support threat management

Posted on March 14, 2025March 14, 2025 by Admin

In today’s world, organizations operate in increasingly complex environments with potential threats to their executives, employees, facilities, supply chains, and other assets popping up at unprecedented rates. In 2024, countries across the globe experienced an increase in election-related unrest as dozens of nation-states went to the polls and some contended with unexpected electoral outcomes and sociopolitical tensions. These actions included mass protests in city centers and the temporary shutdowns of major airports and highways. Additionally,…

Game-day defense: Next-gen threat protection for sporting events

Posted on January 29, 2025January 29, 2025 by Admin

Big league sports inspire passion and pride — from the electrifying atmosphere of game day to the galvanizing community fostered among fans. They are arguably both a cornerstone of culture and an economic force to be reckoned with. Safeguarding national and international sporting events is essential for public safety and confers economic benefit on all involved. In the United States alone, upwards of $52 billion is spent annually by sports travelers, contributing to local businesses…

Leveraging Threat Intelligence in Cisco Secure Network Analytics, Part 2

Posted on November 8, 2024November 8, 2024 by Admin

This blog is continuation of the previous blog on using Cisco Secure Network Analytics. In this part, we cover leveraging public Cisco Talos blogs and third-party threat intelligence data with Cisco Secure Network Analytics. Be sure to read the first part as this part makes references back to Host Group and Custom Security Event instructions covered in the original blog. Cisco Talos Blogs The talented researchers at Cisco Talos regularly publish blogs on threats and…

Multi-Site Mastery: Strategies for Effective Risk Assessments

Posted on October 24, 2024October 24, 2024 by Admin

In this episode of The Security Podcasts we sit down with Mark Landry, National Accounts Director at AMAROK, to discuss navigating multi-site risk assessment effectively. “In order to approach your risk assessment, especially when you’ve got vast or disparate geographies – meaning you’ve got a location in Portland, Maine and location in Portland, Oregon – you have to be able to accurately convey the risk across both of those locations that have very different risk…

SOC Findings Report From RSA Conference 2024

Posted on October 22, 2024October 22, 2024 by Admin

For October Cybersecurity Awareness month, Cisco and NetWitness released the Security Operations Center (SOC) Findings Report from RSA Conference (RSAC) 2024. Since 2017, the SOC has been an educational exhibit at RSAC. The purpose is to monitor the network activity during the event and provide SOC tours and a session during the conference. From the tours and session — and this Findings Report published by sponsors Cisco and NetWitness — you can learn about what…

Proving physical security value across an organization

Posted on October 16, 2024October 16, 2024 by Admin

In this episode of The Security Podcasts we sit down with Thomasina Martin, a Key Account Manager specializing in Energy and Utilities at Genetec, Inc., to talk about proving the value of physical security across an organization. “One of the primary challenges I think a lot of us see, I think it’s universal in the security industry when trying to secure a budget, is that physical security often competes with other critical business units or…

Recognizing National Cybersecurity Awareness Month in 2024

Posted on October 1, 2024October 1, 2024 by Admin

October is National Cybersecurity Awareness Month. Throughout this month, cyber issue awareness is promoted to educate individuals and organizations on the importance of cybersecurity. This year has seen notable cyber threats, making cyber awareness and preparedness essential. Here, cyber leaders share their thoughts on cybersecurity and the threat landscape. National Cybersecurity Awareness Month: Security leaders discuss Karl Holmqvist, Founder and CEO at Lastwall: “We stand at a pivotal moment in cybersecurity, where we must confront…

Balancing Risk and Innovation – A CISO Perspective

Posted on September 25, 2024September 25, 2024 by Admin

In this episode of The Security Podcasts featuring Jill Knesek, CISO of Blackline, and former FBI Special Agent in the Cyber Crime Squad, we talk about balancing risk & innovation from a CISO’s perspective. “The message I like to give is we can be both innovative and secure.,” Knesek says. “They’re not mutually exclusive, and they shouldn’t be. By shifting left and embedding strong security practices and controls earlier into our development lifecycle, we can…

Generative AI poses several security risks

Posted on September 11, 2024September 11, 2024 by Admin

Generative artificial intelligence (GenAI) was analyzed in a recent report by Transmit. The report includes screenshots of dark web forums, marketplaces and subscription-based services. According to the report, Blackhat Gen-AI tools make it easier to create and automate fraud campaigns, resulting in an increased volume, velocity and variety of attacks. GenAI tools automate pentesting to find enterprise vulnerabilities and circumvent security used by specific targets. Configuration (config) files, generated with the assistance of GenAI, are used for…

RansomHub threat actors observed using EDR-killing tool

Posted on August 20, 2024August 20, 2024 by Admin

Threat research from Sophos details a recent encounter with the ransomware group known as RansomHub. The research reports that the attack was unsuccessful; however, researchers were able to analyze the attack and discovered the use of an EDR-killing tool. The research has labelled this utility the EDRKillShifter. John Bambenek, President at Bambenek Consulting, comments, “At present, only RansomHub is using the tool. However, as it was sold on the dark web, it is more than likely that…

1 2 3 … 8 »

threat intelligence

5 ways intelligence professionals support threat management

Game-day defense: Next-gen threat protection for sporting events

Leveraging Threat Intelligence in Cisco Secure Network Analytics, Part 2

SOC Findings Report From RSA Conference 2024

Recognizing National Cybersecurity Awareness Month in 2024

Generative AI poses several security risks

RansomHub threat actors observed using EDR-killing tool

VMWARE

Helping Public Sector Organisations Define Cloud Strategy

How to change the VLAN ID of the Service Console in ESX from the command line/console

Cisco UCS and Vmware Interfaces (Vnics) HA Design Considerations

Troubleshooting network and TCP/UDP port connectivity issues on ESX/ESXi(2020669)

vSphere Client Parameters

Configuration Templates

CUE Licenses

Trouble shooting Unity Express with Call Manager Integeration & Operational Issues

CME Configuration Example: SIP Trunks to Viatalk and VoIP.ms

SIP Phone registration – CME Configuration

CUE Voicemail + VPIM networking (CUE to unity)