The Revolutionary Aspect of SearchMore By Augusto Barros, Vice President of Solutions So you are working on your security monitoring and log management architecture. You look at your requirements and see: The need to collect logs from certain log sources to support your threat detection use cases. Provide advanced analytics...

By Augusto Barros, Vice President of Solutions   Vulnerability management is one of the most basic security hygiene practices organizations must have in place to avoid being hacked. However, even being a primary security control doesn't make it simple to successfully implement. I used to cover VM in my Gartner days,...

By Oleg Kolesnikov, Securonix Threat Research Team     Some security experts are calling the new CVSS 10/10 Windows Zerologon EP (ZEP) Vulnerability (CVE-2020-1472) the GenZ/Alpha variant of the good ol' GenX/Y MS08-067 (see attack screen cap above for what an actual ZEP attack might look like in action.) As...

By Augusto Barros, Vice President of Solutions   Dr. Chuvakin has recently delivered another great blog post about "detection as code". I was glad to read it because it was the typical discussion we used have in our brainstorming conversations at Gartner. It had a nice nostalgic feeling :-). But it also...

By Augusto Barros, Vice President of Solutions   An interesting result from changing jobs is seeing how people interpret your decision and how they view the company you’re moving to. I was happy to hear good feedback from many people regarding Securonix, reinforcing my pick for the winning car in...

By Augusto Barros, Vice President of Solutions, Securonix   I’m very happy to announce today I’m starting my journey with Securonix! I’ve spent the last five years working as an industry analyst, talking to thousands of clients and vendors about their challenges and solutions on security operations. During this time...

Have you noticed an uptick in ransomware recently? Ransomware is commonly delivered by an email that tricks users into trusting a malicious file. Many of the most recent data breaches were initiated because a user fell victim to ransomware. Threats like ransomware, which focuses on compromising the user, have more...

Intellyx BrainBlog for Securonix by Jason English   Companies now expect to acquire security tools on a pay-as-you go, OpEx basis, and vendors who didn’t start out as managed service providers are now trying to adapt their pricing models to more flexible ones for Hybrid IT environments. Maintaining premium pricing...

By Oleg Kolesnikov, Securonix Threat Research Team Created On: July 28, 2020 Last Updated: August 18, 2020   Figure 1: Victim’s Systems Targeted by WastedLocker Unavailable (July 2020)   The Securonix Threat Research Team (STR) is actively investigating the details of the critical targeted Wastedlocker ransomware attacks that reportedly already...

What if the enemy is already inside? In the SecOps world, detecting and responding to threats is only half the story. Sophisticated attackers know the weaknesses of SIEM platforms and other security software and will exploit those vulnerabilities every chance they get. Threat actors know that many legacy platforms can’t...

SWIFT is the primary method by which banks and financial institutions around the globe move money between one another. Swift has been in existence for over 40 years, and has had its share of high-profile security issues. As a consequence, SWIFT has been at the forefront of developing security and...

With the ongoing pandemic, companies have increasingly adopted work from home policies for most of their employees, contractors, suppliers, and partners. This digital transformation provides the flexibility to work from anywhere, but it doesn’t come without a risk. Insider threats are a looming security concern for many organizations today. Insider...