This time last year, the CrowdStrike Falcon OverWatch™ reported on mounting cyber threats facing organizations as they raced to adopt work-from-home practices and adapt to constraints imposed by the rapidly escalating COVID-19 crisis. Unfortunately, the 12 months that followed have offered little in the way of reprieve for defenders. The past year has been marked by some of the … [Read more...] about A Peek Inside the 2021 Threat Hunting Report
Threat
Threat Protection: The REvil Ransomware
The REvil ransomware family has been in the news due to its involvement in high-profile incidents, such as the JBS cyberattack and the Kaseya supply chain attack. Yet this threat carries a much more storied history, with varying functionality from one campaign to the next. The threat actors behind REvil attacks operate under a ransomware-as-a-service model. In this type of … [Read more...] about Threat Protection: The REvil Ransomware
Threat Intelligence in SecureX: Fast, Free, or Easy (pick any three)
SecureX is Cisco’s free, acronym-defying security platform. (“Is it XDR? Is it SOAR? Does it solve the same problems as a SIEM? As a TIP?” “Yes.”) From the very beginning, one of the pillars of SecureX was the ability to consume and operationalize your local security context alongside global threat intelligence. And to that end, SecureX includes, by default, a few very … [Read more...] about Threat Intelligence in SecureX: Fast, Free, or Easy (pick any three)
Secure and Save with Cisco Secure Firewall Threat Defense Virtual
Simultaneously secure and save with new 7.0 features and subscription models Organizations rely on Cisco Secure Firewall Threat Defense Virtual (formerly FTDv/NGFWv), Cisco’s proven network firewall with IPS, URL filtering, and malware defense that protects virtualized environments in private and public clouds. In addition to the improved IPS performance with Snort 3 and the … [Read more...] about Secure and Save with Cisco Secure Firewall Threat Defense Virtual
SecureX threat response Turnkey Integrations
SecureX turns one year old next month. It has been quite a journey from the first announcement at RSA Conference 2020, when there was one 3rd party integration (VirusTotal), to the release of SecureX the summer of 2020 with a large ecosystem. When SecureX was launched, we had several turnkey partner integrations into SecureX, like the Splunk add-on and QRadar extension. … [Read more...] about SecureX threat response Turnkey Integrations
Cisco Supports Secure Firewall Threat Defense Virtual on Nutanix AHV
Your network infrastructure stack is like a peanut butter and jelly sandwich. Some people prefer only peanut butter, some only jelly, but most people prefer a little bit of both. In today’s multi-cloud and application environments, most would say they prefer a hybrid cloud infrastructure, the perfect balance of resources in public and private cloud, giving your organization the … [Read more...] about Cisco Supports Secure Firewall Threat Defense Virtual on Nutanix AHV
Cisco Secure Firewall Threat Defense Virtual now supported on Cisco HyperFlex
With today’s multi-cloud and modern application environments, security is more complex than ever before. With the Cisco Secure platform approach, we are helping you take steps to achieve radically simplified security across your organization. Today, we are driving simplified security to your hyperconverged infrastructure (HCI), delivering support for Cisco Secure Firewall … [Read more...] about Cisco Secure Firewall Threat Defense Virtual now supported on Cisco HyperFlex
FBI Analyst Charged With Stealing Counterterrorism and Cyber Threat Info
The U.S. Department of Justice (DoJ) indicted an employee of the Federal Bureau of Investigation (FBI) for illegally removing numerous national security documents and willfully retaining them at her personal residence during a 13-year period from June 2004 to December 2017. The federal indictment charged Kendra Kingsbury, 48, with two counts of having unauthorized possession … [Read more...] about FBI Analyst Charged With Stealing Counterterrorism and Cyber Threat Info
Simplified Security with Purpose-Built Networking for Advanced Threat Detection
Have you ever looked at your switch and wondered what is going on inside there? It hums, at times it buzzes, and it has a few blinky lights, but what is it really doing? Are you able to understand what types of traffic are being sent to and fro? And do you ever wonder if any threats are lurking within? Of course you have; we all know that threats are everywhere and can be … [Read more...] about Simplified Security with Purpose-Built Networking for Advanced Threat Detection
Threat Explainer: Supply Chain Attacks
Let’s say that you’re confident in your security posture. You have endpoint protection in place, firewalls defending the perimeter, and phishing filters on incoming email. You’ve leveraged tools to check for anomalies in your network traffic, rolled out an SSO solution, and implemented processes to securely connect to the network remotely. These defenses make it harder for bad … [Read more...] about Threat Explainer: Supply Chain Attacks