Mastodawn

Expel Apr 19, 2024

Q1 Threat Trend: increase in high-risk malware incidents

Most high-risk malware threats continue to use JavaScript to gain access to devices, with the 3 primary threat actors being SocGholish, GootLoader, and ZPHP. https://expel.com/blog/expel-quarterly-threat-report-q1-high-risk-malware-2024/?utm_medium=social&utm_source=twitter&utm_campaign=quarterly-threat-report

Expel Quarterly Threat Report volume III: high-risk malware

Next up in our Q1 QTR blog series, we examine high-risk malware incidents. This quarter, high-risk malware made up 67% of malware incidents. Here’s what our SOC team saw and how to protect your org.

Expel

Expel Apr 17, 2024

From deepfakes to malicious YouTube videos, learn how threat actors are using #AI to boost social engineering attacks. https://expel.com/blog/expel-quarterly-threat-report-q1-attackers-and-ai-2024/?utm_medium=social&utm_source=twitter&utm_campaign=quarterly-threat-report #cybersecurity #genAI

Expel Quarterly Threat Report volume II: attackers and AI

Our Q1 QTR blog series continues with a deeper look at attackers using AI to enable more sophisticated social engineering attacks. Check out our key findings and recommendations for protecting your org.

Expel

Expel Apr 15, 2024

Our Q1 Quarterly Threat Report is here - in a fresh new format! Get all the same data, trends and takeaways, but in an easier to digest blog series. To kick things off, let’s look at Q1 by the numbers. https://expel.com/blog/expel-quarterly-threat-report-q1-by-the-numbers-2024/?utm_medium=social&utm_source=twitter&utm_campaign=quarterly-threat-report

Expel Quarterly Threat Report volume I: Q1 by the numbers

Our new QTR series is full of incident findings, trends, and takeaway from the first quarter of 2024. To kick it off, here are the key takeaways on our findings, and an overview of Q1 by the numbers.

Expel

Expel Apr 12, 2024

Palo Alto Networks disclosed that attackers are exploiting a critical vulnerability in PAN-OS for GlobalProtect. Here’s what you need to know: https://expel.com/blog/security-alert-palo-alto-networks-pan-os-globalprotect-command-injection-vulnerability/?utm_medium=social&utm_source=twitter&utm_campaign=blog-promo

Security alert: Palo Alto Networks PAN-OS GlobalProtect Command Injection Vulnerability

Palo Alto Networks disclosed that attackers are exploiting a vulnerability in PAN-OS for GlobalProtect. Here's what you need to know.

Expel

Expel Apr 10, 2024

April #PatchTuesday roundup: Microsoft addresses 150 CVEs while Adobe addresses 24 security vulnerabilities. Check out our team's recommendations on how to reduce exploit risk. https://expel.com/blog/patch-tuesday-roundup-for-april-2024/?utm_medium=social&utm_source=twitter&utm_campaign=blog-promo

Patch Tuesday roundup for April 2024

The April 2024 Patch Tuesday included 150 CVEs from Microsoft and Adobe delivers multiple security updates to address 24 CVEs. Here’s what our team recommends to reduce exploit risk.

Expel

Expel Mar 29, 2024

Security alert: researchers identified a backdoor into the XZ Linux utility, via supply chain compromise. Here’s what you need to know. https://expel.com/blog/security-alert-xz-linux-utility-backdoor/?utm_medium=social&utm_source=twitter&utm_campaign=blog-promo

Security alert: XZ Linux utility backdoor

Researchers identified a backdoor into the XZ Linux utility, via supply chain compromise. Here’s what you need to know.

Expel

Expel Mar 21, 2024

The Expel SOC uses a LOT of logs, so we thought a log guide would make life easier for all the analysts out there. Check it out here. https://expel.com/blog/logs-your-soc-can-use-every-day-a-quick-reference-guide/?utm_medium=social&utm_source=twitter&utm_campaign=blog-promo

Logs your SOC can use every day: a quick reference guide

We pulled the logs our SOC team use daily into a handy quick reference guide for our analysts—and now, you. Here’s your copy of a helpful log guide to make life easier for analysts.

Expel

Expel Mar 19, 2024

The recent drama between the BlackCat ransomware gang and its affiliates shows, there’s no honor among thieves. But how do you know if your cybersecurity is good enough to avoid this kind of situation? Our latest blog post shares our recommendations. https://expel.com/blog/no-honor-among-ransomware-criminals/?utm_medium=social&utm_source=twitter&utm_campaign=blog-promo

#cybersecurity #ransomware

No honor among ransomware criminals

As the recent drama between the BlackCat ransomware gang and its affiliates shows, there’s no honor among thieves. Take steps to assess your org’s security now, so you can stay out of that kind of mess.

Expel

Expel Mar 13, 2024

74% of companies that use a framework use the NIST CSF, which is why the release of version 2.0 is a big deal. Here’s a guide to help you get started with the updated framework. https://expel.com/blog/how-to-get-started-with-the-nist-cybersecurity-framework-csf/?utm_medium=social&utm_source=twitter&utm_campaign=blog-promo

How to get started with the NIST Cybersecurity Framework (CSF) 2.0 | Expel

We give you a quick tour of the NIST Cybersecurity framework and describe how you can baseline your efforts in a couple of hours. So check it out.

Expel

Expel Mar 11, 2024

Come hang with us at our #SXSW workshop today! We’ll put your incident response process to the test with our DND-inspired role-play tabletop game. Details here: https://schedule.sxsw.com/2024/events/PP137091 #sxsw2024

Dungeons & Dragons & Cybersecurity: Gamifying Your IR Plan

SXSW 2024 Schedule | Consider some of the cyber incidents of recent years that left even the biggest corporations scrambling. Would your own team know what to do when Fit hits the Shan? Building muscle memory around your cybersecurity incident response (IR) process before bad things happen ensures everyone knows how to handle the chaos. This Dungeons & Dragons-styled role-play tabletop game is designed to test your operational processes—and your gaming skills. Join us for a threat emulation to help gauge your...

SXSW 2024 Schedule