Overview & Analysis of a Threat Intelligence Ecosystem
February 6, 2017
Authors: Richard Zhao, CTO & Cody Mercer, Senior Intelligence Threat Researcher Security Event Investigation and Threat Intelligence Over a year ago I purposed the three main tenants encompassing a successful Threat Intelligence framework: Define a system infrastructure for security event disclosure and case analysis. Clearly delineate security disclosure responsibilities to respective parties. Cultivate a security data […]
Thwarting 100,000+ Attacks on the G20 Summit, The NSFOCUS Experience
February 6, 2017
In September 2016, prominent world leaders representing the top 20 global economies gathered together in Hangzhou, China to kick off the 11th meeting of Group of Twenty (G20). This year marked the first time that the event was hosted in China and as a result, securing the Summit’s cyber assets and associated networks quickly became […]
“Shifu” Banking Trojan – Technical Analysis and Recommendations
February 6, 2017
Overview The banking Trojan “Shifu” was discovered by the IBM counter fraud platform in April, 2015. Built on the Shiz source code, this Trojan employs techniques adopted by multiple notorious Trojans such as Zeus, Gozi, and Dridex. This particular Trojan targeted 14 banks in Japan and re-emerged in Britain compromising 10 banks on September 22, […]
ElasticSearch Hit by Ransom Attack
January 24, 2017
ElasticSearch Hit by Ransom Attack Overview Last week, over 34,000 vulnerable MongoDB databases fell victim to a recent ransom attack. Data residing on these databases was erased or encrypted and bitcoin payment was demanded in lieu for data return. Moreover, on Jan 18th 2017, several hundred ElasticSearch servers were hit by a ransom attack within […]
NSFOCUS Names Jens Andreassen New Chief Operating Officer
February 13, 2017
Former Lastline CEO To Spearhead Next Phase of U.S. and International Growth Santa Clara, Calif., February 13, 2017 – NSFOCUS, a global provider of intelligent hybrid DDoS defenses, today announced that Jens Andreassen has been named Chief Operating Officer, effective immediately. In his role at NSFOCUS, Andreassen will be responsible for launching new products and […]
HostingCon Global 2017
March 13, 2017
HostingCon Global 2017 03-06 April 2017 L.A. Convention Center 210
RSA Conference 2017, Booth S1839
February 13, 2017
RSA Conference 13-17 February 2017 Moscone Center, San Francisco, CA
Threat Intelligence – You’re Purchasing the Process
February 6, 2017
By: Stephen Gates, Chief Research Intelligence Analyst, NSFOCUS
Over the past year, the cyber security industry has changed significantly in the light of an innovative tool called “Threat Intelligence” (TI). Organizations of all sizes are beginning to gain understanding of the value of TI; however, there is some confusion concerning what organizations believe they are receiving for their money. Organizations are beginning to learn about the notions of strategic and tactical TI. One provides longer-term, pragmatic analysis, alerts, and reports; while the other provides short-term, more-actionable data and informational feeds. Both have tremendous value to organizations who want to gain more insight into the cyber-threat landscape they face daily. However, is TI more than just data? (more…)
