The Infocyte Blog

Detecting and Responding to Ransomware Attacks

Behind the Scenes: What Happens in a Ransomware Attack? [Video]

This post was last updated on September 23rd, 2021 at 04:52 pmThe first step to protecting yourself from a ransomware attack is understanding what it actually is. The behaviors that constitute a threat might individually seem like perfectly normal activity, even to someone who knows what they are looking for. If we put ourselves in…

Read More »
mid-size business cybersecurity

Five MDR Service Principles to Reduce Risk in Mid-Sized Enterprises

This post was last updated on September 8th, 2021 at 05:35 pmIf you run a smaller enterprise or a mid-sized organization, you might think that hackers have bigger fish to fry and won’t set their sites on you. That line of thinking is risky, though. As cybercrime skyrockets, no organization is immune to attack, but…

Read More »
Ransomware

Dealing with DarkSide

This post was last updated on September 23rd, 2021 at 03:28 pmBrian Krebs recently reviewed more details about ‘DarkSide’ and this ransomware group’s role in shutting down the Colonial Pipeline. DarkSide is a group that packages and provides ransomware capabilities as a service. Other ransomware gangs and organizations pay a fee for DarkSide tools and…

Read More »

Infocyte Completes first 100 Microsoft 365 Security and Compliance Assessments

This post was last updated on September 8th, 2021 at 05:18 pmOrganizations Struggle with Proper Microsoft 365 Configuration with 28% Average Compliance Score (less than 50% of our target) Microsoft 365 (aka Office or O365 or MS 365) is the most popular SaaS productivity and back-office platform in the market today. The MS 365 platform…

Read More »
Behavioral Analytics Blog

Practical MITRE ATT&CK Coverage Part II: Top 20 Focus

Follow up blog on why you should monitor for the Top 20 attacker behaviors: not 10, not 30.

Read More »

Top 20 Most Common Hacker Behaviors

This post was last updated on August 27th, 2021 at 03:59 pmThe top MITRE ATT&CK™ behaviors to monitor for on your endpoints and servers When the OWASP Top 20 Vulnerabilities was first published it revolutionized our industry’s approach to vulnerability management. Instead of playing wack-a-mole with thousands of individual vulnerabilities every time a new one…

Read More »

Practical MITRE ATT&CK Coverage

Chasing the unnecessary and unachievable need for FULL MITRE COVERAGE? Here’s why thats a bad idea.

Read More »
cyber endpoints bkg

Infocyte’s Behavioral Analytics Engine Maps to MITRE ATT&CK Framework

This post was last updated on August 27th, 2021 at 04:06 pmSecurity is dynamic because adversaries are always evolving and increasing their sophistication. Companies must defend against known attacks while also being able to stand up defenses to detect and halt emerging threats. Infocyte has provided strong detection capabilities through our threat intelligence, threat research…

Read More »
cyber endpoints bkg

Responding to Microsoft 365 Attacks

This post was last updated on August 24th, 2021 at 10:02 amResponding to the December 2020 SolarWinds Supply Chain Attack (“Solarigate”) solidified one of the most pressing security gaps of this new decade: visibility and defense against cloud application attacks. In Solarigate, attackers used the tainted SolarWinds software as an entry vector into servers and…

Read More »
Sunburst Malware Scanner Image

SUNBURST – Where We Are Now – 2021

Many of us spent the holidays hunting for Solarwinds backdoors. So where are we now? What did we learn? Whats left to be done? SUNBURST in 2021.

Read More »