Threat Management Archives - Page 2 of 4

Detection Posture Management: Reduce your organization’s exposure to threats

Even the best, most mature security teams must plan for worst-case scenarios – when an attack has slipped past their defensive and preventative technologies and becomes a threat. Detection is the last line of defense

CardinalOps Launches TI-Ops to Operationalize Adversary Intelligence through AI and Automation

Turn real adversary behaviors (TTPs) into actionable detection Organizations are struggling to keep up with an evolving threat landscape and security teams are increasingly burdened with the pressure to build an effective cyber defense against

SANS 2024 SOC Survey: Facing Top Challenges in Security Operations

Download this annual survey from the SANS Institute to gain insights from active SOC managers and analysts around best practices for running a SOC. Key observations include:

2024 Report on State of SIEM Detection Risk

In our fourth annual report, CardinalOps set out to gain visibility into the current state of use case development and threat detection coverage in enterprise SOCs. We gathered and analyzed data from production SIEM instances.

Safeguarding Azure Blobs: Detecting Public Network Access Configurations

Microsoft Azure utilizes blobs to house large amounts of unstructured data. An Azure blob can be configured to be accessed from specific IP addresses only. This is the common configuration and a known best practice

The Importance of Proactive Detection Engineering in Light of Ivanti’s VPN Vulnerabilities

Ivanti’s recent disclosure of a new high-severity flaw in its Connect Secure VPN devices marks the fifth such vulnerability revealed over the past couple of months. This alarming trend sheds light on a broader issue

Security leaders discuss new SEC disclosure rule as deadline nears

CardinalOps CEO Michael Mumcuoglu weighs in on the new SEC mandates effective December 15th, requiring organizations to describe their processes for “assessing, identifying and managing material risks from cybersecurity threats.”

Security Layers — Measuring MITRE ATT&CK Detection Coverage Across Your Entire Attack Surface, Linked to Business Outcomes

If you’re like most of us in the defender community, you’re probably tired of seeing all the colored heat maps used to represent MITRE ATT&CK detection coverage.

Detecting Microsoft Outlook Vulnerability CVE-2023-23397 in Splunk, IBM QRadar & Microsoft Sentinel

Summary Discovered by the Ukrainian CERT and attributed to APT28 (aka Fancy Bear or Strontium, the Russian GRU threat actor), CVE-2023-23397 is being actively exploited in targeted attacks against government, transportation, energy, and military sectors

CardinalOps CEO Discusses the State of Today’s SOC Teams on Silo Busting Podcast

Michael Mumcuoglu, CEO and Founder of CardinalOps, recently join the EPAM Continuum podcast, Silo Busting, for a discussion assessing the state of today’s SOC teams. Also featured on the podcast were Sam Rehman, EPAM’s Chief

CardinalOps Named as Winner in 2023 Cybersecurity Excellence Awards for Detection Posture Management

TEL-AVIV, Israel and BOSTON, March 9, 2023 — CardinalOps, the detection posture management company, today announced that the 2023 Cybersecurity Excellence Awards have selected the CardinalOps platform as gold winner of the Continuous Detection Posture Management (CDPM) category. Past

How Detection Posture Management Can Help CISOs Track the Right Metrics

In a recent SC Media column, Michael Mumcuoglu – CEO of CardinalOps, writes that instead of manually identifying gaps in MITRE ATT&CK coverage, it should be automated so that security teams always have a clear