Threat Flash Alert: Threat Actors Actively Targeting Fortinet Vulnerabilities

Threat Flash Alert: Threat Actors Actively Targeting Fortinet Vulnerabilities 6 April 2021 Executive Summary The FBI recently released a joint cybersecurity advisory disclosing that several Advanced Persistent Threat (APT) groups are actively scanning devices for three FortiOS vulnerabilities. It is advised that anyone who has not already applied patches for these vulnerabilities to apply them […]

Why IP Blacklists are Inherently Unreliable

Blacklist of IP addresses

Why IP Blacklists are Inherently Unreliable Alerting based on IP reputation blacklists can have some value, but IP Blacklists are not a strong indicator of threats, despite what many claim.  IP reputation blacklists are notorious for their low quality, which makes alerts based on them less reliable and requires more analysis to verify that something […]

Threat Flash Alert: Four Microsoft Zero-Day Vulnerabilities Disclosed

Threat Flash Alert: Four Microsoft Zero-Day Vulnerabilities Disclosed Executive Summary Microsoft recently discovered evidence of an attack campaign currently in action which leverages several previously unknown vulnerabilities with on-premises Microsoft Exchange Servers. The vulnerabilities enable access to email accounts, and allow for installation of additional malicious entities to maintain persistence within a target’s environment in […]

Zero Access Trust-The Vulnerability of Trust

Zero Access Trust – The Vulnerability of Trust The year 2020 came to a close with the devastating SolarWinds Supply chain breach, affecting 18,000 of SolarWind’s customers. These attacks affected critical infrastructure, government entities and a wide range of private industry organizations. With the size and scale of this compromise the IT industry is seeing […]

Cyber Security Has Become a Big Data Problem

Big Data

Cyber Security Has Become a Big Data Problem Why no one else is searching all your data for security threats   The Challenge Cyber security has become a big data problem. Most organizations generate anywhere from 5 million to 5 billion or more logs every day.  As your organization continues to change and to grow, […]

6 New Functions to Discover on the 5.22 ThreatWatch Platform

threat detection tool

6 New Functions to Discover on SOD’s Latest ThreatWatch Platform 24 November 2020 Over the past year, Security On-Demand has successfully built out many new threat detection capabilities and portal functionality that bring SOD closer to launching the 6th Generation Full-Spectrum Threat Management Platform in 2021.  Our latest 5.22 product rollout features some very exciting […]