Breach! Exploring the Modern Digital Breach: Part 2

What practical steps should organizations and the professionals within them be thinking about in this new world? We have a special two-part series where Rick Holland, VP Intelligence and CISO at Digital Shadows, interviews Bob Anderson, CEO at Cyber Defense Labs and James Chappell, co-founder and Chief Innovation Officer at Digital Shadows. In part 2, the team looks at: - Steps you can take into your programs today as a security or business leader - Advice for boards on how to do to deal with breaches - Knowing your data - What do organizations need to be doing when it comes to understanding and protecting their digital footprint? - Mistakes organizations make in the response stage Learn more at cyberdefenselabs.com or digitalshadows.com

Understanding the Consequences of Data Leakage through History

One of the most interesting aspects of transitioning from high school history teacher to cyber threat intel...

ANU Breach Report: Mapping to Mitre ATT&CK Framework

We decided to map this intrusion to the Mitre ATT&CK framework, as we have done previously for:

Threat Intel Fan?

Sign up below to get our TI updates delivered to your inbox!

First Name

Last Name

Company

Country

State- optional

Job Title

Thank you!

Error - something went wrong!

Return to Home

Welcome to our Digital Risk Protection and Threat Intelligence Resources Center

Breach! Exploring the Modern Digital Breach: Part 2

Previous Post

Next Post

Breach! Exploring the Modern Digital Breach: Part 2

Previous Post

Next Post

Other content in this Stream

Currently 2.3 billion files are being made publicly available by misconfigured and non-secured technologies used to store this data such as Amazon S3 buckets, Server Message Block (SMB), File Transfer

See how one large bank detected more than 50,000 exposed credentials in 1 year.

There are now 750 million more files exposed than we reported last year; not all of them are blatantly sensitive, but there is plenty of gold in these mountains.

Last week, we learned that millions of Ecuadorian’s personal details had been exposed by a misconfigured ElasticSearch database. This is ...

Detect sensitive data that's been exposed by employees, contractors, or third parties.

The digital economy has multiplied the number of suppliers that organizations work and interact with. Using a supplier can ...

The cyber-extortion landscape has shown real signs of strength and advancement in the past three months...

Kacey, Charles, Alex, and Harrison host this week’s threat intelligence update from Dallas. We kick off with vulnerabilities from the week. This includes both the NSA CVE and Citrix CVE. The team...

On Monday, January 13th, Brian Krebs reported that Microsoft would be releasing “a software update on Tuesday to fix ...

In this blog, we discuss several significant trends and events that have helped shape the cyber threat landscape, all of which will almost certainly continue through 2020.

Welcome to our deep dive on threat intelligence: intended to help security professionals embarking on creating and building a ...

Asset inventories are one of the most important things to get right. Done correctly, they give you the best insight into your potential attack surface and identify where to focus your efforts.

we detected over 550 typosquats for the 34 candidate- and election-related domains we gathered from open-source research. Not every single one was something interesting; most of the time the typosquat

In this blog, we determine whether this targeted attack on BriansClub will impact the wider cybercriminal credit carding landscape, and speculate whether it could galvanize the community to push anoth

The first half of 2019 has revealed no ebb in the number of massive data breaches and cybersecurity disasters. As the threat landscape continues to evolve and unfortunate enterprises have become the v

Honeypots can be useful tools for gathering information on current attack techniques. Conversely, they can be an overwhelming source of ...

One of the most interesting aspects of transitioning from high school history teacher to cyber threat intelligence professional is the ...

We decided to map this intrusion to the Mitre ATT&CK framework, as we have done previously for:

When the attacker, Andrei Tyurin, pleaded guilty, we thought we could look at the attacker goals, their TTPs and map this to the Mitre PRE-ATT&CK and ATT&CK framework.

We will walk you through each stage of this exploited data cycle to illustrate the economy of exposed credentials, and then present ways you can protect and mitigate the threats targeting your organiz