Threat Response Times Hinge on Smart SOC Design
When a breach occurs, the clock is ticking - and the cost of delayed response can be crippling, with every hour of inaction threatening data exfiltration, service disruption, regulatory exposure, and brand damage. A smart SOC design can be the difference between a swift response and a devastating fallout.
#SecurityOperationsCenter #SmartSocDesign #Mttr #ThreatResponse #IncidentResponse
Woot ok now that I have the dependency graph crawled I can just ship the listing of known bad NPM packages and just compare directly against that.
I updated the scanning script to alert if you have -any- version of an infected package.
You're gonna want to be very careful if you're not infected but have one of these dependencies present.
https://github.com/datapartyjs/walk-without-rhythm/blob/main/data/infected-pkgs-versions.txt
#ShalHulud #WalkWithoutRhythm #npm #github #javascript #cybersecurity #threatresponse
At the end of scanning for obvious compromise the `check-projects` script then builds a listing of all of your dependencies and all of the versions your project files mention.
You can find that info under `reports/`
I'm currently working on improving the `check-projects` script so that it will alert you if ANY of your package.json or package-lock.json mentions a known infected package.
#ShalHulud #WalkWithoutRhythm #npm #github #javascript #cybersecurity #threatresponse
Rhadamanthys infostealer disrupted as cybercriminals lose server access β a rare victory for defenders in the cat-and-mouse game. ππ‘οΈ #ThreatResponse #CyberDefense
It's been a quiet 24 hours in the cyber world, so we've got a short but thought-provoking post today focusing on the evolving landscape of AI security and its implications for future defence strategies. Let's dive in:
AI Security: Containment is Key π‘οΈ
- The increasing speed of cyber conflict, driven by AI, now surpasses human response capabilities, necessitating autonomous AI in tactical security operations.
- The focus for AI security should shift from programming "human values" into probabilistic AI to building "deterministic fortresses" around it, controlling its interactions with the world.
- This involves architecting systems with rigorously enforced interfaces and boundary protections, allowing AI to operate strategically while maintaining human accountability and control over its actions.
π€« CyberScoop | https://cyberscoop.com/security-automonous-ai-threat-response/
#CyberSecurity #AI #AISecurity #ThreatResponse #InfoSec #CriticalInfrastructure #AutonomousAI
π‘οΈ 2:00 AM. Saturday. Threat detected. Digital Edge is already on it. Real-time response. Scalable defense. No downtime.
#ManagedDetectionResponse #ThreatResponse #CloudSecurity #DevSecOps #AlwaysOnOps #businesscontinuity #digitaledge
A three-part blog series on Scaling Detection and Response Operations at Coinbase:
- https://www.coinbase.com/blog/scaling-detection-and-response-operations-at-coinbase
- https://www.coinbase.com/blog/scaling-detection-and-response-operations-at-coinbase-pt2
- https://www.coinbase.com/blog/scaling-detection-and-response-operations-at-coinbase-pt3
Analyst207
nullagent
Manuel Bissey
Bob Carver
SOC Goulash
Digital Edge Ventures
BSidesAustin
Tedi Heriyanto
ITSEC News