Incident Response stories
GOLD MELODY acts as initial access broker, says Secureworks report
Secureworks identifies GOLD MELODY as a cyber group that sells compromised network access to other criminals
Volume, sophistication and proliferation of threats on the rise
Integrity360 has announced findings from independent research into the cybersecurity threats being faced, the volume, and the challenges with incident response.
Logpoint unveils new capabilities to Converged SIEM platform
Logpoint has announced the release of enhanced automation, investigation, and incident response capabilities to its Converged SIEM platform.
Sophos announces Incident Response Retainer for 24/7 support
“Incident response retainers help organisations prepare in advance for the fastest response time possible to defend against active cyber attacks."
Email defence methods increasingly falling short - report
According to the Secureworks Incident Response report, the number of incidents involving business email compromise doubled between January and December 2022.
Ransomware down 57%, Secureworks warns against complacency
Secureworks has cautioned against complacency despite a 57% decline in ransomware incident response engagements in 2022.
Darktrace unveils AI-enabled capabilities for incident response
Heal completes Darktrace’s cyber AI loop, delivering resilience throughout the cyber lifecycle from prevention, detection, response, and recovery.
Adarma enhances managed detection and response offerings
Adarma’s DFIR services help customers prepare and respond effectively to everyday cyber incidents to minimise business impact.
NetWitness integrates with AWS AppFabric to improve security
AWS AppFabric, a new service from Amazon Web Services, quickly connects SaaS applications for better productivity and security.
Kyndryl unevils Cybersecurity Incident Response and Forensics Service
"Cyber resilience is the ability to anticipate, protect against, and recover from adverse conditions, attacks, and compromises of cyber-enabled business."
Varonis announces the opening of a data centre in Australia
The expansion allows local Varonis customers to achieve automated data security outcomes while following national standards for data privacy.
ExtraHop and CrowdStrike integration drives greater visibility
The new integration is designed to provide joint customers with comprehensive visibility for optimised threat hunting and critical resource allocation for incident response.
Operational resilience: More than disaster recovery
To contend with the explosion of cybercrime and its impact on business operations, many organisations are updating their disaster recovery plans to include cyber incident response.
Rapid7 unveils new capabilities to simplify CDR at AWS event
Rapid7 is showcasing a range of new capabilities at Amazon Web Services (AWS) re:Invent 2022, designed to make cloud detection and response (CDR) and vulnerability assessments easier.
Nspire-d purchase brings Advantage to Wellington
Nspire is a networking consultancy firm predominantly addressing government and enterprise and has plied its trade since 2006.
Microsoft report finds 74% increase in password attacks
Microsoft has published its Digital Defense Report 2022, sharing insights on how the digital threat landscape is evolving and how to mitigate these issues.
APAC businesses lacking cyber incident response plans
Companies in Malaysia and the Philippines have suffered the most incidents, while those in Hong Kong have suffered the least.
2/3 of AU businesses have experienced a cyber incident
"Cyber risk has never been more important and business interruption, data loss and reputation damage are the key factors we should all be preparing for.”
Looking back at the evolution of SIEM
Today, SIEM accounts for approximately $4 billion of total cybersecurity spend and is expected to increase to $6.24 billion by 2027.
Sophos reveals latest ransomware trend impacting orgs
Sophos has announced in a new whitepaper that Hive, LockBit and BlackCat, three prominent ransomware gangs, consecutively attacked the same network.
Latest VMware threat report reveals truth about deepfakes
"Cyber criminals have evolved. Their new goal is to use deepfake technology to compromise organisations and gain access to their environment."
How threat intelligence platforms can extend detection and response
Cybersecurity budgets are rising, with industry commentators frequently reporting that companies are committing more money to strengthening their posture against persistent and sophisticated threats.
Forescout signs agreement to acquire expert in threat detection
Forescout Technologies has signed an agreement to acquire Cysiv, an innovator that uses its cloud platform to improve detection and response.
Microsoft unveils three new security managed services
Security Experts includes three new managed services, Defender Experts for Hunting, Defender Experts for XDR, Security Services for Enterprise.