Posts
This post was last updated on July 4th, 2021 at 08:08 amFollowing exposure and publication of a major remote execution vulnerability like Exchange’s ProxyLogon (CVE-2021-26855), we expect other threat actors to join the race against system administrators trying to patch their systems. Initial reporting showed the threat actor dubbed HAFNIUM were quietly exploiting these vulnerabilities since…
Read More »
This post was last updated on March 26th, 2021 at 11:15 amThe Microsoft Exchange Zero-day exploit drop this week is a big one with far reaching implications for organizations in 2021. Infocyte recommends the following actions organizations need to take when these exploits are being used in the wild: 1. Take inventory Do you host…
Read More »
This post was last updated on July 4th, 2021 at 08:07 amResponding to the December 2020 SolarWinds Supply Chain Attack (“Solarigate”) solidified one of the most pressing security gaps of this new decade: visibility and defense against cloud application attacks. In Solarigate, attackers used the tainted SolarWinds software as an entry vector into servers and…
Read More »
This post was last updated on July 4th, 2021 at 08:22 amWatch our on-demand webinar around this topic here. As mentioned in a recent blog post, Infocyte is expanding it’s platform capabilities by launching a Microsoft 365 security module this week. We are especially excited for this module which will enhance our endpoint detection and…
Read More »
Many of us spent the holidays hunting for Solarwinds backdoors. So where are we now? What did we learn? Whats left to be done? SUNBURST in 2021.
Read More »
This post was last updated on July 4th, 2021 at 08:24 amWednesday, December 23 Infocyte hosted a webinar with our Co-founder and Chief Product Officer, Chris Gerritz. Chris is a foremost expert in threat hunting and has done a significant amount of research around this recent backdoor and subsequent compromises. He’ll cover: Indicators to search…
Read More »
This post was last updated on July 4th, 2021 at 08:38 amInfocyte was recently recognized in Forrester’s Now Tech: Managed Detection and Response Services Providers, Q4 2020. This report showcases Infocyte as an easy path to implement endpoint detection and response (EDR) or managed detection and response (MDR) for mid-size organizations. This report highlights the…
Read More »
Infocyte has published an official Infocyte extension which scans servers for all reported host-based indicators of compromise related to the Solarwinds Orion compromise.
Read More »
The concept of “The Prevention Paradox” describes how an increase in prevention can cause you to be less secure. If you are scratching your head right now, you are not alone. This seems counterintuitive on the surface. But let’s go a step further. By preventing every attack vector you can detect, you lose visibility on adversaries…
Read More »
This post was last updated on February 3rd, 2021 at 04:16 pmBy Chris Auger Regardless of your company’s size, from an attacker’s perspective, you have financial resources or can be a conduit to another organization’s funds. Today’s average attack is often part of an advanced persistent threat (APT) that has been in a compromised environment…
Read More »