CYREBRO Blog

Taking Visibility to a New Level CYREBRO SOC Platform 2.0

Our mission at CYREBRO is to bring state-level cybersecurity to businesses of all sizes and types. We believe that all businesses should always see and understand their cybersecurity with clarity, and have the means and capabilities to mitigate cyber threats against their business. That’s why we are launching a new version of our SOC Platform.…

CYREBRO SOC
  • How to Prevent Insider Threats 

    How to Prevent Insider Threats 

    In the 1999 workplace comedy classic Office Space, three disgruntled employees devise a plan: they will plant a virus in the company’s financial system, which siphons fractions of a cent from each transaction and deposits it in one of their bank accounts. Since the transactions are so small, the men are convinced that no one…

  • Timing – A Hackers Greatest Weapon

    Timing – A Hackers Greatest Weapon

    If you ever have the opportunity to talk to someone in charge of security at a maximum penitentiary, they will tell you the same thing. The prisoners have all the time in the world. All the time to watch and observe, looking for vulnerabilities within the patterned behaviors of the guards and penitentiary staff. They…

  • How SSO can lead to a Pass-The-Hash Attacks

    How SSO can lead to a Pass-The-Hash Attacks

    Apple AirTags. Google Maps. Single sign-on technology. What do these three seemingly random tech advancements have in common? Each was created to make our daily experiences more convenient, yet each has been exploited for evil purposes. Stalkers are using AirTags to track the whereabouts of unsuspecting victims; criminals are plotting attacks and burglaries using detailed…

  • Reverse Proxies Are Killing Your MFA

    Reverse Proxies Are Killing Your MFA

    If you’re old enough to remember landlines (or have seen any 1980s or 90s movie about teens looking to put one over on their parents), chances are your parents pulled a real-world man-in-the-middle attack (MITM) on you. There you were as a sneaky teenager plotting with a friend over the phone about going to a…

  • Cybersecurity Awareness Month – CYREBRO’s Awareness Insights

    Cybersecurity Awareness Month – CYREBRO’s Awareness Insights

    In many fields, including cybersecurity, common wisdom does not always translate into common practice. The majority of the data breaches that have occurred in recent years are not the result of the failure of some cutting-edge artificial intelligence firewall or of the discovery of a critical zero-day exploit. In most cases, a data breach is…

  • Double Extortion – Where We Are Now 

    Double Extortion – Where We Are Now 

    In 2019, the Maze ransomware organization was the first to use double extortion assaults. Since then, a growing number of ransomware gangs have embraced this tactic. Research published in 2021 by Group-IB says that the number of firms that have had their data exposed on a data breach site has increased by 935%, demonstrating that…

  • How to Prevent Insider Threats 

    How to Prevent Insider Threats 

    In the 1999 workplace comedy classic Office Space, three disgruntled employees devise a plan: they will plant a virus in the company’s financial system, which siphons fractions of a cent from each transaction and deposits it in one of their bank accounts. Since the transactions are so small, the men are convinced that no one…

  • Timing – A Hackers Greatest Weapon

    Timing – A Hackers Greatest Weapon

    If you ever have the opportunity to talk to someone in charge of security at a maximum penitentiary, they will tell you the same thing. The prisoners have all the time in the world. All the time to watch and observe, looking for vulnerabilities within the patterned behaviors of the guards and penitentiary staff. They…

  • How SSO can lead to a Pass-The-Hash Attacks

    How SSO can lead to a Pass-The-Hash Attacks

    Apple AirTags. Google Maps. Single sign-on technology. What do these three seemingly random tech advancements have in common? Each was created to make our daily experiences more convenient, yet each has been exploited for evil purposes. Stalkers are using AirTags to track the whereabouts of unsuspecting victims; criminals are plotting attacks and burglaries using detailed…

  • Reverse Proxies Are Killing Your MFA

    Reverse Proxies Are Killing Your MFA

    If you’re old enough to remember landlines (or have seen any 1980s or 90s movie about teens looking to put one over on their parents), chances are your parents pulled a real-world man-in-the-middle attack (MITM) on you. There you were as a sneaky teenager plotting with a friend over the phone about going to a…

  • Cybersecurity Awareness Month – CYREBRO’s Awareness Insights

    Cybersecurity Awareness Month – CYREBRO’s Awareness Insights

    In many fields, including cybersecurity, common wisdom does not always translate into common practice. The majority of the data breaches that have occurred in recent years are not the result of the failure of some cutting-edge artificial intelligence firewall or of the discovery of a critical zero-day exploit. In most cases, a data breach is…

  • Double Extortion – Where We Are Now 

    Double Extortion – Where We Are Now 

    In 2019, the Maze ransomware organization was the first to use double extortion assaults. Since then, a growing number of ransomware gangs have embraced this tactic. Research published in 2021 by Group-IB says that the number of firms that have had their data exposed on a data breach site has increased by 935%, demonstrating that…

  • Reverse Proxies Are Killing Your MFA

    Reverse Proxies Are Killing Your MFA

    If you’re old enough to remember landlines (or have seen any 1980s or 90s movie about teens looking to put one over on their parents), chances are your parents pulled a real-world man-in-the-middle attack (MITM) on you. There you were as a sneaky teenager plotting with a friend over the phone about going to a…

  • Phishing with GIFShell in Microsoft Teams

    Phishing with GIFShell in Microsoft Teams

    People love GIFs. We add them to emails, texts, tweets, and Slack chat groups all day long as we chat away with co-workers, friends, and family. We use them as a communication tool to show emotion and convey a tone when a plain text message might fall flat. If a picture says a thousand words,…

  • Legitimate Platforms Becoming not so Legitimate Playgrounds for Hackers

    Legitimate Platforms Becoming not so Legitimate Playgrounds for Hackers

    You would be hard pressed to come up with a more nostalgic image than a child running a lemonade stand in their front yard on a hot afternoon. Unfortunately, there is nothing nostalgic about what some young entrepreneurs are doing today.  A team of researchers recently uncovered a group of minors that were running what…

  • Phishing-Resistant MFA Proves Again That Weak Links Should Be Layered with Defense

    Phishing-Resistant MFA Proves Again That Weak Links Should Be Layered with Defense

    Cybersecurity is a constant game of the cat chasing the mouse. The cat (a business) continues to believe that with each new plan of attack (i.e., security strategy or tool), it will finally be able to catch the mouse or, in this case, harden its security posture enough to prevent the mouse (a bad actor)…

  • The New Phishing Method That Bypasses MFA

    The New Phishing Method That Bypasses MFA

    Security experts, including our team at CYREBRO, tout the benefits of using multi-factor authentication (MFA) for an added layer of security. While that is still sound advice, recent research shows that a new phishing technique, which steals authentication cookies through Microsoft Edge WebView2 applications, can render MFA useless if people don’t take other precautions. Discovering…

  • RansomWar in Costa Rica – Conti Ransomware Gang Attacks

    RansomWar in Costa Rica – Conti Ransomware Gang Attacks

    Conti, one of today’s most prolific and profitable ransomware groups, launched an initial cyberattack against Costa Rica in mid-April. In recent weeks, the Russian-speaking Conti gang, or possibly an associated group called Hive, have stepped up the attacks and expanded the assault. After Costa Rica refused to pay the initial $10 million ransom or the…

  • Taking Visibility to a New Level CYREBRO SOC Platform 2.0

    Taking Visibility to a New Level CYREBRO SOC Platform 2.0

    Our mission at CYREBRO is to bring state-level cybersecurity to businesses of all sizes and types. We believe that all businesses should always see and understand their cybersecurity with clarity, and have the means and capabilities to mitigate cyber threats against their business. That’s why we are launching a new version of our SOC Platform.…

  • A Smart SOC in space – Protecting the Millennium Falcon

    A Smart SOC in space – Protecting the Millennium Falcon

    If the title of this blog post grabbed your attention on May the 4th, of all days, then you probably need no introduction to the Star Wars franchise and its’ iconic starship the Millennium Falcon. But just in case you’ve been living under the remnants of the planet Alderaan since its destruction by the first…

  • Utilizing SOC Infrastructure vs MDR – an MSSP perspective

    Utilizing SOC Infrastructure vs MDR – an MSSP perspective

    The constant headlines concerning the latest attacks on companies across the industry spectrum serve as constant reminders of the importance of cybersecurity. Digital transformation alone is not enough. You must secure that digital environment, and it’s something that even SMBs have come to realize all too well. Unfortunately, most SMBs lack the technology stack, talent,…

  • 13 Questions to ask your SOC provider

    13 Questions to ask your SOC provider

    As cyber-attacks have become more frequent and complex, there has been a surge in the number of Security Operations Center SOC platforms specializing in threat hunting and incident response.  The SOC market is projected to grow from $471 million in 2020 to $1.656 billion by 2025, at a compound annual growth rate of 28.6% during…

  • The Role of a SOC During a Cyber Kill Chain

    The Role of a SOC During a Cyber Kill Chain

    The cybersecurity kill chain, initially defined by Lockheed Martin, continues to be a general standard inside Information Security to describe how a malicious actor, internal or external, performs an attack. The cyber kill chain 7 stages are defined as: Reconnaissance – Identify vulnerabilities, improperly configured services, and obtain credentials through active or passive methods. Weaponization…

  • The Role of Artificial intelligence (AI) in security operations center (SOC)

    The Role of Artificial intelligence (AI) in security operations center (SOC)

    In the world of digital warfare, Artificial Intelligence is transforming the Security Operation Centers (SOC) to better respond to cybersecurity threats and attacks. Leveraging AI-Based security tools, such as CYREBRO’s SOC Platform, can provide integration features whereby you will be better able to detect and respond to cybercrimes without an in-house SOC team in place. …

  • How to Prevent Insider Threats 

    How to Prevent Insider Threats 

    In the 1999 workplace comedy classic Office Space, three disgruntled employees devise a plan: they will plant a virus in the company’s financial system, which siphons fractions of a cent from each transaction and deposits it in one of their bank accounts. Since the transactions are so small, the men are convinced that no one…

  • How SSO can lead to a Pass-The-Hash Attacks

    How SSO can lead to a Pass-The-Hash Attacks

    Apple AirTags. Google Maps. Single sign-on technology. What do these three seemingly random tech advancements have in common? Each was created to make our daily experiences more convenient, yet each has been exploited for evil purposes. Stalkers are using AirTags to track the whereabouts of unsuspecting victims; criminals are plotting attacks and burglaries using detailed…

  • Cybersecurity Awareness Month – CYREBRO’s Awareness Insights

    Cybersecurity Awareness Month – CYREBRO’s Awareness Insights

    In many fields, including cybersecurity, common wisdom does not always translate into common practice. The majority of the data breaches that have occurred in recent years are not the result of the failure of some cutting-edge artificial intelligence firewall or of the discovery of a critical zero-day exploit. In most cases, a data breach is…

  • Common Entry Points #5 – External Vendors

    Common Entry Points #5 – External Vendors

    Tag, you’re it! That infamous saying may remind you of your childhood, but it’s also applicable to the never-ending game threat actors play. They hunt around looking for unsuspecting victims who simply haven’t paid attention to their security gaps and left their organization’s vulnerabilities unaddressed. With just a tap, hackers can deliver the same deadly…

  • Disaster Recovery vs. Cyber Recovery – Different Plans Preparing for Different Struggles

    Disaster Recovery vs. Cyber Recovery – Different Plans Preparing for Different Struggles

    As Bob Dylan so eloquently said in his classic song from the 1960s, “Times they are a-changin,” sixty years later they still are. Modern society has grown accustomed to change. It’s the pace of it that can cause you to catch your breath at times.  Just as the bulk of rock and country music is…

  • How to achieve effective cybercrime investigations

    How to achieve effective cybercrime investigations

    Different organizations and companies will define the stages within the lifecycle of a cyber security event a little differently. The National Institute of Standards and Technology (NIST) follows a four-step process of preparation, detection & analysis, containment, eradication & recovery, and post-incident activity. The International Organization for Standardization (ISO) quantifies the process with five stages: prepare, identify, assess, respond…

  • What is the NIST Cybersecurity Framework and How is it Relevant to Your Organization?

    What is the NIST Cybersecurity Framework and How is it Relevant to Your Organization?

    We’ve written a lot on the CYREBRO blog about U.S. cybersecurity laws–rules that businesses in specific sectors such as financial services and healthcare are obligated to follow. Today we’d like to introduce a related but different topic: cybersecurity standards, namely the U.S. National Institute of Standards and Technology Cybersecurity Framework (NIST CSF). A standard is…

  • Cybersecurity and Data Protection Laws: EU Healthcare Businesses

    Cybersecurity and Data Protection Laws: EU Healthcare Businesses

    Businesses operating in the European Union are subject to the strictest data protection regulation in the world, the General Data Protection Regulation (GDPR). Unlike the United States, the EU doesn’t have an industry-specific cybersecurity law for the healthcare sector. However, healthcare organizations are subject to a new cybersecurity law for businesses in essential industries, known…

  • QRoC SIEM integration Carbon Black script

    QRoC SIEM integration Carbon Black script

    QRoC SIEM integration scripts We published codes on the open-source platform Github to improve global security Within the cybersecurity community, IBM’s QRoC software is something of a catch-all when it comes to managing security information. QRoC (like other SIEM technologies) provides the ability to take information from multiple security tools and create rules that allow…

  • QRoC SIEM integration DUO script

    QRoC SIEM integration DUO script

    QRoC SIEM integration scripts CyberHat publishes codes on open-source platform Github to improve global security Within the cybersecurity community, IBM’s QRoC software is something of a catch-all when it comes to managing security information. QRoC (like other SIEM technologies) provides the ability to take information from multiple security tools and create rules that allow the…

  • QRoC SIEM integration MongoDB-Atlas script

    QRoC SIEM integration MongoDB-Atlas script

    QRoC SIEM integration scripts We published codes on the open-source platform Github to improve global security Within the cybersecurity community, IBM’s QRoC software is something of a catch-all when it comes to managing security information. QRoC (like other SIEM technologies) provides the ability to take information from multiple security tools and create rules that allow…

  • QRoC SIEM integration Mimecast script

    QRoC SIEM integration Mimecast script

    QRoC SIEM integration scripts We published codes on the open-source platform Github to improve global security Within the cybersecurity community, IBM’s QRoC software is something of a catch-all when it comes to managing security information. QRoC (like other SIEM technologies) provides the ability to extract information and optimize from multiple security tools and create rules…

  • Taking Visibility to a New Level CYREBRO SOC Platform 2.0

    Taking Visibility to a New Level CYREBRO SOC Platform 2.0

    Our mission at CYREBRO is to bring state-level cybersecurity to businesses of all sizes and types. We believe that all businesses should always see and understand their cybersecurity with clarity, and have the means and capabilities to mitigate cyber threats against their business. That’s why we are launching a new version of our SOC Platform.…

  • CYREBRO’s Fraud Analysis Sheds Light on How to Fight Against BEC and Fraud

    CYREBRO’s Fraud Analysis Sheds Light on How to Fight Against BEC and Fraud

    Fraud is nothing new and has existed well before the world wide web came into play. But with constant digital transformations and advancements in technology, it’s expected that fraud too will evolve and shift, becoming ever more dangerous and complex. Con artists continue to keep up with security trends, including digital resources, content, and organizational…

  • CYREBRO’s IR Analysis – Visibility Gaps and How to Eliminate Them

    CYREBRO’s IR Analysis – Visibility Gaps and How to Eliminate Them

    Today, the question isn’t if your company will suffer from a security incident, it’s when.  A few years ago, a shocking statistic came to light when CYREBRO analyzed internal incident response (IR) reports: 75% of reported security incidents were caused by inadequate investment in security solutions that caused blind spots in network visibility.  Unearthing that…

  • Dark Reading panel – The Next Generation SOC with CYREBRO CEO Nadav Arbel

    Dark Reading panel – The Next Generation SOC with CYREBRO CEO Nadav Arbel

    SOCs are taking the center stage as the defenders of the network but many organizations don’t fully understand how to leverage a SOC, leaving them in the dark about the real value they provide.   On March 24, CYREBRO’s CEO and founder Nadav Arbel sat together with Ryan Alban Sr. Manager of Global Solution Leads at…

  • CISO Series Podcast Featuring CYREBRO’s CTO, Ori Arbel – What’s Next in Security?

    CISO Series Podcast Featuring CYREBRO’s CTO, Ori Arbel – What’s Next in Security?

    In this episode of CISO Series, we CYREBRO’s CTO, Ori Arbel, discussing the latest cybersecurity trends with the show hosts, cybersecurity journalist, David Spark, and veteran CISO, Andy Ellis. From the start of COVID and the cloud migration rush that followed, to practical tips to help improve incident response planning, the group discusses how to…

  • Women: A Powerful Part of Any Cybersecurity Company

    Women: A Powerful Part of Any Cybersecurity Company

    On March 8th, our company will proudly celebrate International Women’s Day. While this year’s theme, Break the Bias, applies to women in every professional field and country, we find it particularly relevant to the cybersecurity industry. Gender bias has gone on for too long. Many women haven’t been given the recognition and opportunities they deserve. …

Sign Up for Updates