TRENDING:

Finding Beacons in the Dark - A Guide to Cyber Threat Intelligence

BlackBerry • February 7, 2022  
Finding Beacons in the Dark - A Guide to Cyber Threat Intelligence

Cobalt Strike a post-exploitation framework developed to emulate the greatest features of late-stage malware ecosystems allows its users to simulate adversary actions. The adoption of Cobalt Strike by global threat actors, and the framework’s use in hundreds of genuine intrusions, ransoms, and data breaches makes analysts and researchers around the world to renew their approaches to collecting, processing and sharing information about Cobalt Strike and its use in bulk.

Can you detect Cobalt Strike payloads before they execute? Or only after they execute? Can you detect the network C2 traffic? And when you see Cobalt Strike detections, can you differentiate between a red team engagement and a bona fide intrusion?

Delve into this eBook to learn what you can do to proactively protect your organization from the growing threat of Cobalt Strike beacons and team servers from top cybersecurity experts. You’ll learn key CTI concepts and how to build a CTI program that can effectively find beacons in the dark.

Highlights include tips for:

  • Building out detailed profiles of threat actors
  • Broadening your knowledge of existing threat groups
  • Tracking both ongoing and new threat actor campaigns
  • Providing intelligence for SOC analysis and incident responders & more
  • Ascertaining campaign timelines for future attacks and incident response engagements & more
Previous
4 Lessons of Security Leaders for 2022
Next
Ten Proactive Strategies to Defend Yourself against Ransomware and Other Types of Malware



Around the Network

Evolving Threats Facing Robotic and Other Medical Gear
Evolving Threats Facing Robotic and Other Medical Gear
Why Health Firms Struggle with Cybersecurity Frameworks
Why Health Firms Struggle with Cybersecurity Frameworks
Identity Security and How to Reduce Risk During M&A
Identity Security and How to Reduce Risk During M&A
How 'Security by Default' Boosts Health Sector Cybersecurity
How 'Security by Default' Boosts Health Sector Cybersecurity
Medical Device Cyberthreat Modeling: Top Considerations
Medical Device Cyberthreat Modeling: Top Considerations
Safeguarding Critical OT and IoT Gear Used in Healthcare
Safeguarding Critical OT and IoT Gear Used in Healthcare
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
Protecting Medical Devices Against Future Cyberthreats
Protecting Medical Devices Against Future Cyberthreats
Is It Generative AI's Fault, or Do We Blame Human Beings?
Is It Generative AI's Fault, or Do We Blame Human Beings?
Transforming a Cyber Program in the Aftermath of an Attack
Transforming a Cyber Program in the Aftermath of an Attack

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.