The Infocyte Blog

Category: Incident Response Planning

First Hour Response Blog Image

First Hour Response: The Only Way to Handle an Event Prior to it Becoming an Incident

This post was last updated on October 14th, 2021 at 07:16 pmBy Chris Mills In a recent blog post around Cobalt Strike, Chris Gerritz spoke about how important it was to be prepared and have a true partner in the first hour of a security event. In speaking with our team over the last few…

Read More »
remote incident response services

Partner Best Practices for Remote Incident Response and Assessment Service Delivery

This post was last updated on August 27th, 2021 at 05:28 pmIn the past, Incident Responders and Security Analysts had to fly out to a network to help contain and investigate an incident on-site, or complete a Threat and Compromise Assessment. Even without coronavirus fears, this practice is becoming less and less popular. With COVID-19…

Read More »
cyber security incident response checklist

Incident Response Planning: A Checklist for Building Your Cyber Security Incident Response Plan

This post was last updated on October 21st, 2021 at 11:40 amIs your organization prepared to respond to a security breach or cyber attack? According to many security experts, it’s a matter of “when” and not “if” your company will experience a serious cybersecurity incident. An incident response plan is your best chance at defending…

Read More »
infocyte incident response platform extensions

Infocyte Release Notes, October 2019: Incident Response Ready Program and Platform Extensions

This post was last updated on August 11th, 2021 at 11:14 amCurrently, Infocyte is capable of detecting a vast array of cyber threats — ransomware, file-less attacks, advanced persistent threats, etc. — that exist within an environment. Our detection and response platform does this by leveraging multiple sources of threat intelligence feeds and enriching that…

Read More »
cyber security incident response process

IR Planning: The Critical 6 Steps of Cyber Security Incident Response

This post was last updated on August 27th, 2021 at 05:21 pmOur data, services, and infrastructures are attacked constantly by ransomware, malware, cyber attackers…the list goes on. Despite our best efforts to stop them, most organizations will experience the dreadful outcomes of a data breach. When this happens, you initiate your (hopefully, updated and well-practiced)…

Read More »
cyber incident response team

A Practical Guide to Building a Cyber Incident Response Team

This post was last updated on August 17th, 2021 at 03:35 pmWhile there are a number of threat and risk management solutions that help your team deal with low-level security events by automating responses, high-level threats (sophisticated and stealthy attacks) including advanced persistent threats (APTs) require a cyber incident response team — equipped and ready…

Read More »
infocyte mid-market threat and incident response cyber report

Mid-market Threat and Incident Response Report: Our Methodology

This post was last updated on August 11th, 2021 at 11:14 amLast month, we released our inaugural Mid-market Threat and IR Report on the types of threats we’re finding in customer- and partner-led threat assessments and incident response investigations. One of the most interesting and controversial data points is the enormous amount of dwell time…

Read More »
check point incident responder

A Day in the Life of a Check Point Incident Responder

This post was last updated on August 11th, 2021 at 11:15 amThis blog is a first-hand account from a Check Point Software Incident Responder, outlining a cyber attack which occurred in January of 2019. First signs of an attack The call came in first thing in the morning. One of our clients, Linden Bulk Transportation,…

Read More »
cyber security incident response planning

Reducing Cyber Risk: 5 Tweaks to Your Incident Response Plan

This post was last updated on August 11th, 2021 at 11:14 amAccording to a 2018 Ponemon Institute study of 2,800 IT and information security professionals, 77% claimed their organization lacked a formal cybersecurity incident response plan. In the first half of 2019, our Mid-market Threat and Incident Response Report found that small and mid-sized businesses…

Read More »