News Archives - CardinalOps

Closing Falcon EDR Gaps with Automated Delivery of New IOA Rules

Managing a threat-informed detection posture across your full security stack is no small task–even for large, leading-edge enterprise security teams. That’s why we’re excited to help our customers unlock the full potential of their CrowdStrike

CardinalOps Launches Cardinal AI for Agentic Exposure Management

Introducing Autonomous, Targeted Mitigations via Compensating Controls BOSTON and TEL AVIV, Israel, July 29, 2025 /PRNewswire/ — CardinalOps, the leading Unified Exposure Management platform, today announced the launch of Cardinal AI, a new suite of artificial intelligence capabilities designed to

The Art of Anomaly Hunting: Learning from Legitimate Patterns for Detection

When writing detections based on threat reports, research blogs or other sources, common sense dictates that we should find a way to alert on the malicious actions as best as possible, ideally using TTPs. This

CardinalOps Now Available for Purchase on the CrowdStrike Marketplace

CardinalOps, the leading detection posture management company, today announced that its CardinalOps Platform for Falcon® LogScale and CardinalOps TI-Ops for Falcon® Adversary Intelligence Premium are now available for purchase in the CrowdStrike Marketplace.

Security Layers — Measuring MITRE ATT&CK Detection Coverage Across Your Entire Attack Surface, Linked to Business Outcomes

If you’re like most of us in the defender community, you’re probably tired of seeing all the colored heat maps used to represent MITRE ATT&CK detection coverage.

Detecting Microsoft Outlook Vulnerability CVE-2023-23397 in Splunk, IBM QRadar & Microsoft Sentinel

Summary Discovered by the Ukrainian CERT and attributed to APT28 (aka Fancy Bear or Strontium, the Russian GRU threat actor), CVE-2023-23397 is being actively exploited in targeted attacks against government, transportation, energy, and military sectors

CardinalOps CEO Discusses the State of Today’s SOC Teams on Silo Busting Podcast

Michael Mumcuoglu, CEO and Founder of CardinalOps, recently join the EPAM Continuum podcast, Silo Busting, for a discussion assessing the state of today’s SOC teams. Also featured on the podcast were Sam Rehman, EPAM’s Chief

CardinalOps Named as Winner in 2023 Cybersecurity Excellence Awards for Detection Posture Management

TEL-AVIV, Israel and BOSTON, March 9, 2023 — CardinalOps, the detection posture management company, today announced that the 2023 Cybersecurity Excellence Awards have selected the CardinalOps platform as gold winner of the Continuous Detection Posture Management (CDPM) category. Past

How Detection Posture Management Can Help CISOs Track the Right Metrics

In a recent SC Media column, Michael Mumcuoglu – CEO of CardinalOps, writes that instead of manually identifying gaps in MITRE ATT&CK coverage, it should be automated so that security teams always have a clear

What CISOs Don’t Know About Their SOCs

In a recent SC Media column, Michael Mumcuoglu – CEO of CardinalOps, wrote how continuous improvement techniques can help CISOs more effectively manage the growing threat landscape and improve the visibility and effectiveness of their

Why MITRE ATT&CK Has Taken Over the SOC World

I recently listened to an excellent summary about why MITRE ATT&CK has taken over the SOC world (sorry, it’s behind a paywall called “CSO Perspectives,” but this blog post is intended to summarize the key

Leveraging AI and Automation with MITRE ATT&CK to Eliminate Detection Coverage Gaps in Your SOC

At Black Hat 2022, our VP of Cyber Defense Strategy was interviewed on Security Guy TV to discuss why MITRE ATT&CK has become a standard way of describing your defensive posture to management as well