Incident Response stories

GOLD MELODY acts as initial access broker, says Secureworks report
Yesterday
#
cybersecurity
#
secureworks
#
security vulnerabilities
Secureworks identifies GOLD MELODY as a cyber group that sells compromised network access to other criminals

Volume, sophistication and proliferation of threats on the rise
This month
#
cybersecurity
#
research
#
incident response
Integrity360 has announced findings from independent research into the cybersecurity threats being faced, the volume, and the challenges with incident response.

Logpoint unveils new capabilities to Converged SIEM platform
This month
#
siem
#
converged infrastructure
#
cybersecurity
Logpoint has announced the release of enhanced automation, investigation, and incident response capabilities to its Converged SIEM platform.

Sophos announces Incident Response Retainer for 24/7 support
Last month
#
sophos
#
security vulnerabilities
#
cyber attacks
“Incident response retainers help organisations prepare in advance for the fastest response time possible to defend against active cyber attacks."

Email defence methods increasingly falling short - report
Last month
#
cyber criminal
#
email
#
secureworks
According to the Secureworks Incident Response report, the number of incidents involving business email compromise doubled between January and December 2022.

Ransomware down 57%, Secureworks warns against complacency
Last month
#
ransomware
#
cyber criminal
#
attack
Secureworks has cautioned against complacency despite a 57% decline in ransomware incident response engagements in 2022.

Darktrace unveils AI-enabled capabilities for incident response
Fri, 28th Jul 2023
#
ransomware
#
it automation
#
ai
Heal completes Darktrace’s cyber AI loop, delivering resilience throughout the cyber lifecycle from prevention, detection, response, and recovery.

Adarma enhances managed detection and response offerings
Fri, 7th Jul 2023
#
cybersecurity
#
forensics
#
digital footprint
Adarma’s DFIR services help customers prepare and respond effectively to everyday cyber incidents to minimise business impact.

NetWitness integrates with AWS AppFabric to improve security
Thu, 6th Jul 2023
#
saas
#
aws
#
cybersecurity
AWS AppFabric, a new service from Amazon Web Services, quickly connects SaaS applications for better productivity and security.

Kyndryl unevils Cybersecurity Incident Response and Forensics Service
Fri, 9th Jun 2023
#
cybersecurity
#
forensics
#
kyndryl
"Cyber resilience is the ability to anticipate, protect against, and recover from adverse conditions, attacks, and compromises of cyber-enabled business."

Varonis announces the opening of a data centre in Australia
Wed, 12th Apr 2023
#
data centre operators
#
data centre maintenance / management
#
saas
The expansion allows local Varonis customers to achieve automated data security outcomes while following national standards for data privacy.

ExtraHop and CrowdStrike integration drives greater visibility
Tue, 28th Mar 2023
#
extrahop
#
crowdstrike
#
cyber threats
The new integration is designed to provide joint customers with comprehensive visibility for optimised threat hunting and critical resource allocation for incident response.

Operational resilience: More than disaster recovery
Fri, 27th Jan 2023
#
dr
#
cybersecurity
#
cybercrime
To contend with the explosion of cybercrime and its impact on business operations, many organisations are updating their disaster recovery plans to include cyber incident response.

Rapid7 unveils new capabilities to simplify CDR at AWS event
Thu, 1st Dec 2022
#
aws
#
security vulnerabilities
#
rapid7
Rapid7 is showcasing a range of new capabilities at Amazon Web Services (AWS) re:Invent 2022, designed to make cloud detection and response (CDR) and vulnerability assessments easier.

Nspire-d purchase brings Advantage to Wellington
Thu, 24th Nov 2022
#
advantage nz
#
mergers and acquisitions
#
nz government
Nspire is a networking consultancy firm predominantly addressing government and enterprise and has plied its trade since 2006.

Microsoft report finds 74% increase in password attacks
Tue, 8th Nov 2022
#
microsoft
#
ransomware
#
cybersecurity
Microsoft has published its Digital Defense Report 2022, sharing insights on how the digital threat landscape is evolving and how to mitigate these issues.

APAC businesses lacking cyber incident response plans
Wed, 2nd Nov 2022
#
cybersecurity
#
kroll
#
cyber attacks
Companies in Malaysia and the Philippines have suffered the most incidents, while those in Hong Kong have suffered the least.

2/3 of AU businesses have experienced a cyber incident
Wed, 2nd Nov 2022
#
cybersecurity
#
kroll
#
cyber attacks
"Cyber risk has never been more important and business interruption, data loss and reputation damage are the key factors we should all be preparing for.”

Looking back at the evolution of SIEM
Thu, 13th Oct 2022
#
siem
#
cybersecurity
#
ueba
Today, SIEM accounts for approximately $4 billion of total cybersecurity spend and is expected to increase to $6.24 billion by 2027.

Sophos reveals latest ransomware trend impacting orgs
Mon, 15th Aug 2022
#
malware
#
firewall
#
ransomware
Sophos has announced in a new whitepaper that Hive, LockBit and BlackCat, three prominent ransomware gangs, consecutively attacked the same network.

Latest VMware threat report reveals truth about deepfakes
Wed, 10th Aug 2022
#
virtualisation
#
advanced persistent threat protection
#
it automation
"Cyber criminals have evolved. Their new goal is to use deepfake technology to compromise organisations and gain access to their environment."

How threat intelligence platforms can extend detection and response
Tue, 19th Jul 2022
#
advanced persistent threat protection
#
cybersecurity
#
threat intelligence
Cybersecurity budgets are rising, with industry commentators frequently reporting that companies are committing more money to strengthening their posture against persistent and sophisticated threats.

Forescout signs agreement to acquire expert in threat detection
Thu, 9th Jun 2022
#
advanced persistent threat protection
#
iot security
#
mergers and acquisitions
Forescout Technologies has signed an agreement to acquire Cysiv, an innovator that uses its cloud platform to improve detection and response.

Microsoft unveils three new security managed services
Tue, 10th May 2022
#
microsoft
#
malware
#
xdr
Security Experts includes three new managed services, Defender Experts for Hunting, Defender Experts for XDR, Security Services for Enterprise.