This report offers a checklist for surviving a Cyber Attack.

Cybersecurity has emerged as a key risk factor to be weighed during the due diligence process of any merger and acquisition. How should organizations on both sides approach the process? Steve Chabinsky of CrowdStrike shares his thoughts on strategy for assessing cyber risk during the M&A due diligence process.

The big-name breaches have made us all sensitive to the loss of personal and competitive data. But are we overlooking the real risks? Shawn Henry of Crowdstrike offers insight on how we need to evolve our core defenses.

This report discusses a key issue in a Malware-centric defense approach; it will leave you vulnerable to attacks that don’t leverage malware. Read on to learn more.

This report offers insight into threat hunting. It specifically focusses on the “Human Detection Engine.”

This paper presents the results of a survey that sought to understand how IT decision makers are thinking about the term “software supply chain attacks.”

This paper discuses a particular Business Email Compromise that has appeared out of Nigeria.

This report offers an analysis of may of the significant cyber security events of 2017.

This report from July of 2018 discusses China, Russia & North Korea Launching Sophisticated Espionage-Focused Cyberattacks.

From the report, “During the past six months, Carbon Black looked into the dark web to determine how cryptocurrency malware is being bought and sold, fostering a burgeoning economy designed to pilfer some of the most popular cryptocurrencies on the market.”

This report provides insight into threat hunting and the challenge of returning the balance of power for security from the attackers to the defenders.

In this survey of 40 CISO’s from major financial institutions, revealed trends in lateral movement, counter incident response, integrity attacks and the most concerning threat actors organizations face.

This report is part of a larger developing series, the aim of which is to apply a different approach to threat intelligence to identify a new threat actor and its previously unknown espionage campaigns; it also aims to link together campaigns that were assumed to be unrelated, or which were falsely attributed to other groups. We call this new project — and threat actor — The White Company in acknowledgement of the many elaborate measures the organization takes to whitewash all signs of its activity and evade attribution. The White Company consists of three reports. The first report tells the story of the overall campaign and presents forensic findings in a manner suitable for a general audience, including analyses of the technical and geopolitical considerations that enable readers to draw conclusions about the threat actors and understand the campaign in context. Two additional technical reports follow: One is focused on The White Company’s exploits, the other on its malware and infrastructure.

The purpose of this white paper is to introduce managed security services as a key strategy for evolving your business.

This paper takes a look at several bespoke backdoors deployed by OceanLotus Group, as well as evidence of the threat actor using obfuscated CobaltStrik Beacon payloads to perform C2.

This report provides insight into the top stories from the third quarter of 2018.

This report takes a look at a new global campaign targeting nuclear, defense, energy, and financial companies.

In this whitepaper they cover the different defense technologies used over time, how different attacks vectors influenced this evolution, how the industry adopted different approaches over time, and why the prevention approach has returned and why it matters.

This paper discusses one possible avenue for improving EDR which is the broader adoption of machine learning techniques.

This paper seeks to provide a new approach to cyber security that enables IT operations and incident response teams to move faster and act smarter.

This paper provides insight into the tools an IT security pro needs to rapidly hunt, find and investigate dynamic threat indicators.