Following that POC, it became clear to me that Cybereason is a no-brainer for cutting edge technology companies heavily leveraging Linux in their product environments and Macs for employees. Simply put, there is no better EDR solution on the market...

July 29, 2021 / 3 minute read

Special guest Glenn Kapetansky, CSO Tat Trexin Consulting, discusses how security can be embedded into agile software development to produce fast and secure code - check it out...

July 28, 2021 /

XDR provides organizations all they need to pinpoint, understand, and then stop attacks wherever they are on the network by taking an operation-centric approach to security...

July 27, 2021 / 3 minute read

A fateful meeting between a U.S. Secret Service agent and a notorious European carder marks the beginning of the end for Albert Gonzalez and his 'All Star' crew of hackers...

July 26, 2021 /

Join this podcast with special guest Steve Durbin, Chief Executive at ISF, to learn the importance of protecting critical assets throughout the information life cycle - check it out...

July 22, 2021 /

Cybereason is thrilled to announce a strategic partnership with CYDERES, the security-as-a-service division of Fishtech Group, to bring enhanced Managed Detection and Response (MDR) to our current and future managed security customers...

July 22, 2021 / 2 minute read

Cybereason invites you join us at Black Hat 2021 on August 4th/5th - sessions with our SMEs will cover advanced RansomOps, how XDR leverages Indicators of Behavior to detect and remediate against attacks faster, and more...

July 21, 2021 / 3 minute read

A behavior-based approach to prevention, detection and response is required for success against ransomware attacks by stopping them at the earliest stages, long before the ransomware payload can be delivered....

July 21, 2021 / 4 minute read

Cybereason is excited to announce a major step in the evolution of our innovative XDR Platform with the acquisition of security analytics company empow...

July 20, 2021 / 1 minute read

Dave Kennedy, one of the founders of DerbyCon, talks about the unique vibe of the conference, his fear of clowns, and why he'll never listen to a Busta Rhymes album again - check it out…

July 19, 2021 /

The Cybereason Defense Platform detects and prevents Prometheus ransomware, a relatively new variant first observed in February of 2021 that has impacted more than 40 companies...

July 15, 2021 / 10 minute read

Phil Attfield, CEO and founder at Sequitur Labs, discusses the challenges involved in the development of security policies and management frameworks at scale to support the IoT device lifecycle - check it out...

July 15, 2021 /

This latest round of investment validates the company’s position as the preeminent innovator in delivering XDR, EDR, EPP and anti-ransomware solutions...

July 14, 2021 / 2 minute read

The Cybereason team is excited to announce the launch of the Cybereason Defenders League, a Global Partner community designed to reward the cybersecurity industry’s most trusted advisors and solution providers...

July 13, 2021 / 2 minute read

This live webinar version of the CISO Stories Podcast brings together a panel of subject matter experts who examine recent ransomware research findings and discuss how organizations can better prepare to defend against and respond to a ransomware attack...

July 12, 2021 / 1 minute read

Special guest Sherri Davidoff continues the story where we find ShadowCrew's Gonzales working with the Secret Service on orchestrating the largest cybercrime bust in U.S history - check it out…

July 12, 2021 / 1 minute read

Cybereason partners with South Korean Global Fortune 2000 leader the Doosan Corporation to protect enterprises from sophisticated cyberattacks on endpoints and across their networks...

July 11, 2021 / 2 minute read

Join Cybereason CSO Sam Curry for this webinar series where he revisits some of the cybersecurity highlights of the first half of 2021, from the SolarWinds supply chain attacks to DarkSide and other major ransomware operations...

July 9, 2021 / 1 minute read

CSO Dan Lohrmann discusses how he faced a dilemma where he was asked to implement a technology despite the fact that the technology was insecure - check it out...

July 8, 2021 /

With great power comes great responsibility, and it’s time for everyone to ask not just 'how could my supply chain be used against me?' but also 'how could I be used against those I supply?'

July 7, 2021 / 4 minute read

Cybereason detects and blocks REvil ransomware, protecting our customers and those of our Managed Services Provider partners in the wake of the Kaseya supply chain attacks...

July 6, 2021 / 5 minute read

Jeff Moss discusses the origins of DEF CON and its interesting relationship with law enforcement and the intelligence community over the years...

July 6, 2021 /

CISO Mark Weatherford navigates the rough waters by focusing on relationships and his knowledge of security activities across government - check it out...

July 1, 2021 /

The disruption of critical business operations is shared across all industry verticals and organizations of all sizes, including small to midsize businesses...

June 30, 2021 / 3 minute read

Special guest Sherri Davidoff has skillfully researched the fascinating life and exploits of Albert Gonzales, as detailed in her book Data Breaches - check it out…

June 28, 2021 /

Cybereason CEO Lior Div shares his thoughts on the recent G7 meeting, the summit between Biden and Putin, and what it means for cybersecurity moving forward...

June 25, 2021 / 2 minute read

Special guest Alexander Niejelow, SVP for Cybersecurity at Mastercard discusses the Cybersecurity Talent Initiative, a public/private partnership which provides student loan assistance...

June 23, 2021 /

How did a small-scale event in Chicago grow to become a major hacker conference? THOTCON co-founders Nick Percoco and Jonathan Tomek reveal all - check it out…

June 22, 2021 /

XDR provides a prevention-first strategy for early detection to stop disruptive ransomware attacks before damage is done to the organization....

June 21, 2021 / 3 minute read

Ira Winkler recounts his amazing journey from wannabe astronaut to NSA intelligence analyst, social engineer, systems hacker and author...

June 17, 2021 /

Will a Biden-Putin photo op at a joint press conference lead to agreements around reigning in the threat actors that Putin harbors in Russia?

June 17, 2021 / 3 minute read

A new global research study conducted by Cybereason reveals that the majority of organizations suffered significant business impact following a ransomware attack...

June 16, 2021 / 2 minute read

Cybereason CEO Lior Div shares the experience of battling against NotPetya and the parallels that make the SolarWinds attack feel like deja vu...

June 15, 2021 / 3 minute read

Only time will tell if Russian is willing to give up threat actors - but organizations don’t have the luxury of time when it comes to defending themselves...

June 15, 2021 / 3 minute read

Special guest Lieutenant Colonel, USMC (retired) Bill Hagestad, a leading international authority on cyberwarfare and Chinese cyber operations and capabilities...

June 15, 2021 /

We’ve observed ransomware threat groups using multiple leverage points to extort their victims - here are a few tactics that stood out to us...

June 14, 2021 / 4 minute read

Special guest Dawn Cappelli, VP Global Security and CISO at Rockwell Automation, discusses strategies to build a better insider risk program to mitigate these threats - check it out...

June 9, 2021 /

The enormity of the cybercrime ecosystem makes it nearly impossible to recover most ransoms - that’s the way things stand now...

June 8, 2021 / 3 minute read

Join us for a live ransomware attack simulation, where we’ll discuss the latest attack trends, walk through a multi-stage ransomware attack...

June 8, 2021 / 1 minute read

Threat researcher Assaf Dahan examines the DarkSide attack on Colonial Pipeline, and the implications for the security of critical infrastructure...

June 8, 2021 / 1 minute read

Examine market drivers for XDR adoption and how MSSPs can take advantage of the enhanced detection and response capabilities XDR...

June 7, 2021 / 3 minute read

Join special guest Jim Reavis, CEO at the Cloud Security Alliance, to learn how to use appropriate controls to manage cloud environments securely...

June 3, 2021 /

The Cybereason Defense Platform detects and blocks REvil ransomware, allowing defenders to protect their organizations from this evolving threat...

June 2, 2021 / 2 minute read

Cybereason is committed to working with the MITRE Engenuity Center for Threat-Informed Defense to develop better defense strategies that reverse the adversary advantage...

June 2, 2021 / 2 minute read

Threat actors like these use the same advanced R&D techniques and agile principles that we’ve been championing in cutting-edge development and technology labs for years...

June 1, 2021 / 3 minute read

Cybereason CEO Lior Div shares his thoughts on how the United States needs to respond today in order to draw a line in the sand and prevent major attacks...

June 1, 2021 / 3 minute read

Nortel was positioning itself China's partner, not knowing it was China's primary target for corporate espionage and 'Unrestricted Warfare' doctrine...

June 1, 2021 /

SIEM, SOAR and EDR technologies have their benefits, but organizations need to move beyond - that’s where XDR comes into play...

May 27, 2021 / 4 minute read

Several ransomware incidents made headlines in 2021 - here are six events that stood out among the rest...

May 26, 2021 / 3 minute read

Learn how Cybereason helps organizations around the world outthink and outpace threat actors...

May 25, 2021 / 2 minute read

Roland Cloutier, Global CSO at TikTok, discusses five critical elements for developing an effective Critical Asset Protection Program (CAPP) - check it out...

May 25, 2021 /

Biden's Executive Order (EO) focuses on response, reporting, and reinforcing, but how can we ensure that attackers know there are consequences?

May 25, 2021 / 3 minute read

There have been significant advances in EPP to better prevent ransomware, but quality EDR is the ransomware killer that can counter its proliferation...

May 24, 2021 / 3 minute read

No longer bound by NDA, former RSA execs share the untold story behind one of the most impactful attacks of all time - check it out...

May 24, 2021 / 1 minute read

Companies are struggling with security issues due to a lack of visibility and a shortage of skilled staff - can XDR help?

May 21, 2021 / 1 minute read

No longer bound by NDA, former RSA execs tell how the infamous breach unfolded and share the untold story behind one of the most impactful attacks of all time - check it out...

May 20, 2021 / 1 minute read

Cybereason is excited to announce that CISO Israel Barak and Principal Security Advocate Lodrina Cherne are taking center stage at the RSA Conference...

May 19, 2021 / 2 minute read

Cybereason is excited to announce it was named a finalist in the Best Endpoint Security category of the 2021 SC Awards Europe competition...

May 19, 2021 / 1 minute read

XDR, short for Extended Detection and Response, has emerged the best option for defending the modern corporate IT infrastructure...

May 19, 2021 / 3 minute read

The Gartner Critical Capabilities Report breaks down product capabilities customer profile and the vendors most suitable by customer use case and needs...

May 18, 2021 / 3 minute read

Will Lin, co-creator of the CISO community Security Tinkerers, discusses his passion for technology and how it led him to a career helping security companies launch and supporting CISOs through collaboration...

May 18, 2021 /

DarkSide's semi-state-sanctioned crime models may not specifically repeat itself throughout the ages, but it often rhymes...

May 17, 2021 / 5 minute read

Cybereason CEO Lior Div shares his thoughts on the global ransomware crisis and the efforts of the Ransomware Task Force to foster a collaborative "win as one" effort to develop effective strategies to address it.

May 14, 2021 / 3 minute read

Join Cybereason and Wipro to learn how to automate the automate-able, what to do to secure the apparently insecure-able, and how to future-proof security programs...

May 14, 2021 / 1 minute read

Hear how one healthcare CISO is having risk-based discussions at the right levels to address the security challenge...

May 13, 2021 /

Ransomware actors have accelerated the evolution of the tactics and techniques designed to make the attacks more effective - is your SOC ready?

May 12, 2021 / 4 minute read

Join us live as we breakdown the DarkSide Ransomware attack and show how Cybereason fully detects and protects against this threat...

May 11, 2021 /

Jack Daniel recalls how the BSides conference started and what 'community-oriented' events contribute that other events often cannot - check it out...

May 11, 2021 /

Lengthy detection, investigation and response periods following a ransomware attack is too little, too late - prevention is key to defending against ransomware attacks...

May 10, 2021 / 4 minute read

Learn about the advantages of XDR and how MSSPs and their customers can benefit versus tools like SIEM, SOAR and traditional EDR...

May 10, 2021 / 3 minute read

Cybereason is positioned furthest to the right in the Visionary Quadrant of the EPP MQ for Completeness of Vision as Cybereason continues to disrupt the endpoint protection space...

May 6, 2021 / 2 minute read

Edward Marchewka, founder at Chicago Metrics, explains the strategy behind different measures and how they can be applied to improve performance...

May 6, 2021 /

Organizations need to prepare for ransomware attacks - here are three tips for building a successful ransomware prevention strategy...

May 5, 2021 / 4 minute read

Special guest Bill Hagestad, a leading international authority on cyberwarfare, gives us a look inside Chinese cyber operations - check it out...

May 4, 2021 / 13 minute read

What’s keeping financial organizations from detecting and responding to attacks early enough to prevent them from becoming major breach events?

May 3, 2021 / 4 minute read

Cybereason co-founder and CEO Lior Div takes a look at how the Biden team is addressing cybersecurity challenges as the administration hits the 'first 100 days' milestone...

April 30, 2021 / 3 minute read

In a highly targeted operation by a Chinese APT, a newly discovered backdoor dubbed PortDoor is being used in attacks targeting a Russian defense contractor...

April 30, 2021 / 7 minute read

Tatu Ylönen, SSH founder and inventor of Secure Shell, discusses the protocol and the application of technological solutions to security challenges...

April 29, 2021 /

Join Ed Amoroso, CEO of TAG Cyber and Sam Curry, CSO of Cybereason as they discuss the outlook for the security industry based on recent events and trends...

April 28, 2021 /

Here are five things you need to know about the current state of ransomware attacks and how to defend against them...

April 28, 2021 / 3 minute read

Cybereason Nocturnus Team has been tracking the Avaddon Ransomware since June 2020 and the double extortion model...

April 27, 2021 / 4 minute read

Andrew Ginter dives into cybersecurity challenges for Nuclear facilities - how secure are modern nuclear power plants from cyber attacks? Check it out...

April 27, 2021 /

The goal of this whitepaper is to help enterprise teams reduce gaps in their security architecture and improve the endpoint and mobile experience for their users...

April 26, 2021 / 1 minute read

New research shows that cybercriminals continue to target vulnerabilities in Microsoft Exchange, highlighting the need for a better approach to cybersecurity...

April 22, 2021 / 2 minute read

"Either REvil is benefitting indirectly from pariah policies related to cybercrime in Russia or is directly taking orders from a government." ~Sam Curry, Cybereason CSO...

April 22, 2021 / 3 minute read

The multi-stage cryptocurrency botnet has been observed exploiting the Microsoft Exchange vulnerabilities associated with the HAFNIUM attacks to penetrate networks...

April 22, 2021 / 15 minute read

The Cybereason Defense Platform dominated due to its ability to prevent and detect the advanced tools, tactics and procedures used in the MITRE evaluations emulating real-world scenarios...

April 21, 2021 / 2 minute read

We go into some of the methodology of EDR and we analyze “testing tools" to demonstrate the flaws in their use and explain why the results are unreliable when pitted against a modern EDR system...

April 21, 2021 / 9 minute read

Hear how Mike Daugherty, CEO of LabMD, took on the FTC and mounted a multi-year defense to combat the outrageous allegations leveled by the regulatory agency...

April 21, 2021 /

The Cybereason Defense Platform achieved 100% coverage for prevention and 98% technique visibility across the 54 advanced attack techniques applied in testing...

April 20, 2021 / 2 minute read

Chris Wysopal, one of L0pht's founding members, talks about the group's 1998 Senate testimony and how they used shaming to force corporations to secure their software...

April 20, 2021 / 1 minute read

Understand how to detect the preliminary stages of an attack, analyze the scope of the operation and prevent execution of the malicious code...

April 19, 2021 / 1 minute read

“There is a massive skills gap in the cybersecurity industry and we should do all we can to bridge it and to pay forward what we all received in our careers. No one advances in isolation.” ~Sam Curry, Cybereason CSO...

April 16, 2021 / 2 minute read

If your organization has a distributed attack surface, this webinar is a must - we’re seeing attackers increasingly pivot from opportunistic compromise to double extortion ransomware attacks...

April 15, 2021 / 1 minute read

Tony Sager, a 35-year NSA software vulnerability analyst and executive, discusses how the CIS Controls can be used effectively to manage your environment...

April 15, 2021 /

The plan marks the first step in a larger effort to strengthen digital safeguards at municipal water utilities, natural gas pipeline operations and more...

April 14, 2021 / 3 minute read

By using double extortion, ransomware attackers can compel organizations to pay a ransom even if they are able to recover their information using data backups...

April 14, 2021 / 3 minute read

By the end of the ‘90s many of the L0pht hackers had quit their day jobs and incorporated under the name L0pht Heavy Industries...

April 13, 2021 /

With these five steps, you can continuously tune your security strategy and leverage the connection between techniques, tactics, and procedures and real-world adversary groups...

April 12, 2021 / 1 minute read

The MalOp provides a contextualized view of the full attack narrative correlated across all impacted endpoints and users so security analysts can respond to threats with an operation-centric approach...

April 11, 2021 / 3 minute read

Special guest Petri Kuivala, CISO at NXP Semiconductors, recounts his journey from municipal police officer to cybercrimes unit investigator to Chief Information Security Officer during the early days when security was largely an afterthought...

April 8, 2021 /

'L0pht' was one of the most influential hacker collectives of the '90s: they were even invited to testify in front of Congress on the state of Internet security. In this episode of Malicious Life, four of L0pht's members talk about the beginning and influence of the L0pht on cybersecurity. - check it out...

April 6, 2021 / 2 minute read

“Cybereason’s platform has helped us protect our clients and partners from advanced threats and has simplified our security operations,” said Justin Kallhoff, Chief Cybersecurity Officer...

April 6, 2021 / 2 minute read

Cybereason CSO Sam Curry shares insights on the news that attackers publicly exposed information from 533 million Facebook users based in 106 countries, including phone numbers, Facebook IDs, birthdates, bios, full names and locations. The dumped data also included the email addresses for a portion of the affected users.

April 5, 2021 / 3 minute read

Ransomware attacks are continuing to accelerate at a torrid pace - but the more concerning trend is how effective they are at creating chaos & paralyzing business operations. Effective multi-layer ransomware prevention capabilities have never been more important. Here are three implementations every security team needs

April 5, 2021 / 4 minute read

The information & cybersecurity industry has no shortage of regulations, many organizations simply rundown the list of requirements, load them into a spreadsheet and check the boxes to show they are compliant. But is being compliant the same as being secure? Tune in to this CISO podcast episode with guest Lee Parrish

April 1, 2021 /

DarkSide ransomware follows the double extortion trend where the threat actors first exfiltrate the data and threaten to make it public if the ransom demand is not paid, rendering backing up data as a precaution against a ransomware attack moot...

April 1, 2021 / 6 minute read

The US-based technology company explained in its statement that it had found no evidence of those responsible for the intrusion having misused a user account or having gained access to its databases - but according to the whistleblower, this isn’t what happened...

March 31, 2021 / 3 minute read

Complaints represented a 69% increase over 2019, and Cybereason CSO Sam Curry suspects that the reported losses likely represent just a fraction of the actual costs to Americans in 2020...

March 31, 2021 / 3 minute read

The Cybereason Defense Platform prevents the execution of DearCry ransomware and other malware being propagated by threat actors abusing residual elements of the recent HAFNIUM attacks on Microsoft Exchange...

March 30, 2021 / 3 minute read

Cybereason focuses on Indicators of Behavior (IoBs) to quickly identify suspicious or malicious activity, and provide the visibility, context, and intelligence customers need to take action at the earliest stages of an attack...

March 29, 2021 / 3 minute read

Mauro Israel, CISO at BIOOOS, discusses his colorful background and how he – like many in the security field – discovered his true calling late in life and was able to apply his wide range of knowledge & experience to the role of CISO in the healthcare field. Check out the new episode of the CISO stories podcast

March 26, 2021 /

Cybereason MDR was one of 15 solutions included in the report from Forrester, a testament to Cybereason's superior threat hunting, multi-layer prevention and correlated behavior-based detections.

March 24, 2021 / 2 minute read

The recent HAFNIUM attacks hit tens of thousands of organizations’ Microsoft Exchange servers. What happened, what were the vulnerabilities exploited in the attack, and what can we do to defend against such attacks in the future? In this episode, Host Ran Levi is joined by Israel Barack, Cybereason CISO

March 23, 2021 / 1 minute read

The Sodinokibi/REvil ransomware gang has reportedly attacked multinational corporation Acer and demanded a ransom of $50 million - ransomware today is not simply an evolution of traditional malware, but an element of increasingly complex and highly targeted operations.

March 23, 2021 / 3 minute read

Listen as we break down the chain of events from the moment NotPetya began to spread around the world to the moment it was stopped by Amit Serper who was on his way to friends when he decided to take a swipe at the malware. Catch the latest episode of the Malicious Life podcast with guest Cyber Analyst Amit Serper

March 22, 2021 / 12 minute read

Cybereason continues to investigate the related threats to protect our customers against adversaries targeting still-vulnerable and patched but not fully remediated Microsoft Exchange servers...

March 18, 2021 / 2 minute read

Cybereason researchers have discovered a new campaign targeting US taxpayers with documents that purport to contain tax-related content but ultimately deliver NetWire and Remcos malware - two prolific remote access trojans.

March 18, 2021 / 4 minute read

Business units are challenged to demonstrate ROI on their spending, why should information security departments be any different? Tune in to the latest podcast episode to learn why calculating ROI for security may not be necessary and how reducing risk involves different considerations

March 17, 2021 /

Watch the discussion between leading security CEOs at Cybereason's roundtable event as they are addressing increased security funding in the recently passed American Rescue Package legislation in the wake of two devastating attacks.

March 16, 2021 / 37 minute read

Cyberattacks targeting IT infrastructure systems are highly-scalable, campaign-style efforts with a widespread impact. With their high degree of success in recent months, we can expect this trend to continue in the future. Now is the time to learn how to end these attacks. Join our webinars to learn more!

March 16, 2021 / 1 minute read

“It’s one thing to have solutions in place that can detect one component of an attack, but it’s another thing to understand that individual events represent aspects of a larger malicious operation." Yonatan Striem-Amit, CTO and co-founder of Cybereason

March 15, 2021 / 3 minute read

Join leaders from Cybereason's Nocturnus Research and Incident Response teams as they explore insights based upon what is happening in the underground and their first-hand experience with ransomware attacks encountered in the wild.

March 12, 2021 / 1 minute read

Let’s strive for us women to continue to push each other and ourselves to our next level constantly, to make ourselves comfortable in uncomfortable situations, and then take another step forward into the discomfort.

March 12, 2021 / 2 minute read

Digital attackers compromised the live feeds of 150,000 surveillance cameras made by enterprise security camera system manufacturer Verkada.

March 11, 2021 / 3 minute read

Although equality issues in workplaces for women have generally improved over the last few years, there is still a great deal of room for improvement...

March 11, 2021 / 3 minute read

The CISO position in some organizations is relatively new, but the role has actually been evolving over the past 25 years - ever since Citibank named the first CISO, Steve Katz, in 1995. Join this podcast to learn how Steve navigated the early days of security and the changes he sees in the role today...

March 10, 2021 /

"Win as One” means we succeed or fail as a team, regardless of gender identity, sexual orientation, religion, or race. I am inspired every day by this approach and the modeling of it by our management team...

March 10, 2021 / 2 minute read

To attract and retain more women in the tech fields, we need to change our thinking to focus on whether a candidate is a Culture Add rather than a Culture Fit...

March 9, 2021 / 2 minute read

Organizations are again scrambling to assess the impact of a recently disclosed attack attributed to the Chinese state-sponsored HAFNIUM APT group that targets vulnerabilities in Microsoft Exchange. Cybereason protected all of our customers from both the SolarWinds and HAFNIUM attacks.

March 8, 2021 / 3 minute read

Getting ahead in business doesn’t mean suppressing my femininity, it means using the best of who I am and finding ways for that authentic me to continue to advance in business – without apologies...

March 8, 2021 / 3 minute read

"Bob Bigman, former CISO for the CIA, simplifies the conversation by slaughtering some of the industry’s most sacred cows like risk tolerance as a key driver for security programs..."

March 4, 2021 /

Join us as we welcome special guest Marci McCarthy, CEO and President at T.E.N. Inc., to learn how CISOs can better maintain self-awareness, exercise empathy and emotional intelligence to gain trust of others, and exercise appropriate self-care.

March 3, 2021 /

Host Ran Levi is joined by Amit Serper, the first researcher to tackle NotPetya and provide a solution when he was Principal Security Researcher at Cybereason...

March 3, 2021 / 13 minute read

Top-tier defender Keith Barros of Seton Hall University discusses the successes achieved with a deployment of Cybereason solutions to secure endpoints and ramp-up students to Level1 Analyst level performance....

March 2, 2021 / 1 minute read

Organizations need to be conscious of where they are in reference to the ‘creepy line.’ Join this podcast with special guest Valerie Lyons to learn how to determine the data collection and processing appropriate for your organization...

February 25, 2021 /

We need to shift away from our reliance on IOC artifacts and leverage Indicators of Behavior (IOBs), the subtle chains of behavior that can reveal an advanced attack long before it escalates to a major security event...

February 24, 2021 / 3 minute read

“Abigail, Stephan and Ahmed each bring unique skill sets that will have a profound impact as we continue to meet the need for future-ready security by enhancing partnerships with organizations that are in the battle with defenders everyday..." ~Eric Apple, SVP Sales at Cybereason.

February 23, 2021 / 2 minute read

“We chose Cybereason was because of our need for comprehensive detection that’s mapped to MITRE ATT&CK... and to increase the speed to mitigation...” ~Nick LaPointe, Infosec Admin for SCM Insurance Services.

February 23, 2021 / 2 minute read

Recent research found the average ransom payment paid had decreased by a third in the final quarter of 2020, dropping to $154,108 in Q4 from $233,817 in Q3. This was attributed to victims choosing not to give into demands for payment, not that attacks are diminishing overall.

February 22, 2021 / 4 minute read

Kia Motors America stated that a ransomware attack was not the apparent cause of an extended systems outage affecting the automobile dealer’s IT systems. It all started with an error message…

February 19, 2021 / 3 minute read

Cybereason is pleased to announce a partnership with Oxygen DMCC, the Dubai-based leader in AI-powered cybersecurity and mobility solutions, enabling enterprises across the Middle East and North Africa (MENA) to detect and end cyber attacks on endpoints anywhere on their networks.

February 18, 2021 / 2 minute read

Host Ran Levi is joined by attorney and privacy expert Ted Claypoole, and Andrew Maximov, CEO at Promethean AI who uses AI to fight Belarus's dictatorship, to explore the implications...

February 17, 2021 / 15 minute read

"The size of the leak is not as important as the substance... The big concern here is where that data went and how threat actors might use it." ~Sam Curry, Cybereason CSO

February 17, 2021 / 3 minute read

The Cybersecurity Coalition’s Ari Schwartz brings us up to date on some of the organization’s initiatives and then dives into some of the challenges SLED defenders are facing in trying to do more with less…

February 17, 2021 /

The NetWalker ransomware has been targeting organizations in the US and Europe including several healthcare organizations, despite several known threat actors publicly claiming to abstain from targeting such organizations due to COVID-19.

February 16, 2021 / 4 minute read

A look at some of the reasons why we often get notes from our customers to the effect of, “I’m having fun watching our pentesters get frustrated over and over again as they attempt to bypass Cybereason - literally throwing the kitchen sink at it to no avail!”

February 15, 2021 / 2 minute read

Enjoy this podcast with special guest Mischel Kwon to learn how to translate information security technical issues into a business-focused language and determine the right amount of technical language to share with executives…

February 12, 2021 /

Clearview AI scrapes billions of images off social media and the open web, applies facial recognition algorithms on them, and sells that data to law enforcement agencies all over the world. But who are the people behind this secretive company, and what did a breach into its databases reveal?

February 12, 2021 / 21 minute read

Defenders must be able to quickly identify, and respond to malicious operations (MalOps) with surgical precision, to be able to think, adapt, and act more swiftly than attackers can adjust their tactics...

February 10, 2021 / 1 minute read

"For nearly one year since the beginning of the COVID-19 pandemic, threat actors have carried numerous acts of war against research companies, hospitals and other first responders. These attacks have been brazen, shocking and downright maniacal..." ~ Sam Curry, CSO at Cybereason

February 9, 2021 / 3 minute read

An attacker group published information stolen from two healthcare service providers in a reported attempt to extort them for money.

February 8, 2021 / 3 minute read

One feature that Cybereason provides to protect users from exploit attacks is our Exploit Protection. This blog provides a quick rundown of some of the key terms used in understanding exploit attacks.

February 4, 2021 / 2 minute read

With Cybereason XDR, defenders can pinpoint, understand and end any Malop™ (malicious operation) across the entire IT stack whether on-premises, mobile or in the cloud.

February 4, 2021 / 2 minute read

Clearview AI scrapes billions of images off social media and the open web, applies facial recognition algorithms on them, and sells that data to law enforcement agencies all over the world. But who are the people behind this secretive company, and what did a breach into its databases reveal?

February 3, 2021 / 17 minute read

Brandon Wales, acting director of the Cybersecurity and Infrastructure Security Agency (CISA), said in an interview that 30% of victims weren’t running SolarWinds’ Orion platform but suffered a compromise anyway.

February 3, 2021 / 3 minute read

This talk with investigative reporter Brian Krebs and Cybereason CSO Sam Curry will examine some of the more alarming trends in cybercrime today and offer some perspectives on how businesses, consumers and infosec pros can up their game in response.

February 2, 2021 /

The United Kingdom’s National Health Service (NHS) warned that scammers are in the process of sending out fake COVID-19 vaccine invitations.

February 1, 2021 / 3 minute read

Law enforcement entities and judicial authorities located around the world succeeded in disrupting the Emotet botnet’s infrastructure through a coordinated takedown effort.

January 28, 2021 / 3 minute read

National Privacy Day is a time to look at the current state of privacy and to set the direction and tone for the future. On January 28, 2021, let’s stop and think not just about the minimum requirements of privacy legislation but rather about the world we’re building and handing to our children.

January 28, 2021 / 2 minute read

Partnering with Ensign enables cyber defenders to take the fight directly to the adversary across endpoints, the enterprise and everywhere cyber battles are fought.

January 28, 2021 / 2 minute read

Each week has brought new insights into what happened. Most of those updates have confirmed what we already know: whoever perpetrated these attacks were intent on not being detected. The most recent update on the attacks was no exception…

January 27, 2021 / 6 minute read

The Cybereason Nocturnus Team has been tracking the activity around the RansomEXX, being used as a part of multi-staged human-operated attacks targeting various government related entities and tech companies.

January 26, 2021 / 4 minute read

The State of Cybersecurity Report 2020 from Wipro highlights trends and insights and provides guidance to help improve and maintain cyber resilience.

January 25, 2021 / 3 minute read

“What matters is whether this is useful to Biden as a tool for his strategy, not the parting shot of the outbound President. This is a chip in a political game and not significant to cyber security unless there’s momentum and more to follow. It’s all up to Biden now...”

January 22, 2021 / 3 minute read

“We need to arm security analysts with tools to make the connection between disparate indicators of compromise—and, more importantly, the more subtle indicators of behavior associated with an attack—so that they can quickly detect and respond to malicious operations with surgical precision."

January 21, 2021 / 3 minute read

Cybereason and SYNNEX Corporation are pleased to announce a strategic agreement that enables SMBs and Enterprises to detect and end cyber attacks on endpoints anywhere on their networks.

January 13, 2021 / 1 minute read

Since first emerging in May 2020, the ransomware operators (aka. the Conti Gang) claim to have over 150 successful attacks with millions in extortion fees. Download the Indicator's of Compromise to search for Conti in your own environment.

January 12, 2021 / 5 minute read

Cybereason® is pleased to announce our collaboration with Intel® Hardware Shield to provide robust protection against ransomware attacks at machine speed.

January 11, 2021 / 2 minute read

FC - aka 'Freaky Clown' - is an expert in physical security assessments - otherwise known as breaking into ultra-secure buildings like big international banks - check it out...

January 7, 2021 /

In a December 31 blog update, Microsoft revealed that its investigation into Solarwinds had found no evidence of unauthorized access to its production services or customer data, but that effort did uncover another attack attempt.

January 5, 2021 / 3 minute read

We spent some time with Israel Barak, Chief Information Security Officer at Cybereason, who discussed some of the challenges of running a world-wide SOC remotely during the pandemic.

January 4, 2021 / 1 minute read

Security expert Israel Barak discusses the SolarWinds Supply Chain Attacks, how can organizations defend against similar attacks, and what all this has to do with evolution and natural selection - check it out...

December 28, 2020 /

Over the course of December, 2020, the Cybereason Nocturnus Team has been tracking down cyber crime campaigns related to the holiday season, and more specifically to online shopping. Download the Indicator's of Compromise to search for Dridex in your own environment.

December 24, 2020 / 6 minute read

In the past few months, the Cybereason Nocturnus team has been tracking the activity of the Clop ransomware, a variant of CryptoMix ransomware. Download the Indicator's of Compromise to search for Clop in your own environment.

December 23, 2020 / 3 minute read

On December 13, 2020, IT infrastructure management provider SolarWinds issued a Security Advisory regarding their SolarWinds Orion Platform after experiencing a “highly sophisticated” supply chain attack.

December 22, 2020 / 2 minute read

Here are a handful of likely moves from the cyber adversaries in 2021 and where the risk lies.

December 22, 2020 / 11 minute read

Here's three stories that were just too good to leave on the editing room floor: Shadow Inc.  and Election Hacking, J&K / Max Headroom, and T-Shirt-Gate and Yahoo's Ugly Death - check it out...

December 21, 2020 /

Cybereason has entered a strategic partnership with Oracle to protect global enterprises against advanced cybersecurity threats at every endpoint and across the enterprise.

December 21, 2020 / 2 minute read

A new report from ESG, the Impact of XDR on the Modern SOC, is focused on the perception and value of XDR, and certainly reveals a number of interesting insights around how teams are prioritizing investment against attacks.

December 18, 2020 / 2 minute read

Security researchers observed a politically motivated APT called “Molerats” using three new malware variants to conduct espionage in the Middle East. Download the Indicator's of Compromise to search for Molerats in your own environment.

December 15, 2020 / 3 minute read

On December 13, Reuters reported that malicious actors had gone after both the U.S. Department of Treasury and the U.S. Department of Commerce.

December 14, 2020 / 3 minute read

We spent some time with Jake Williams - founder and President at Rendition Infosec and SANS Instructor - discusses some of the challenges in remotely running a successful infosec consultancy.

December 14, 2020 / 1 minute read

Ryuk ransomware is most often seen as the final payload in a larger targeted attack against a corporation, and since its return in September, it has been mainly delivered via TrickBot or BazarLoader infections.

December 10, 2020 / 3 minute read

The Cybereason Nocturnus Team has identified an active espionage campaign employing three previously unidentified malware variants that use Facebook, Dropbox, Google Docs and Simplenote for command & control and the exfiltration of data from targets across the Middle East.

December 9, 2020 / 2 minute read

In the mid-'90s, a Dutch TV repairman claimed he invented a revolutionary data compression technology that could compress a full-length movie into just 8KB - check it out...

December 7, 2020 /

We spent some time with Katie Nickels - current Director of Intelligence at Red Canary and formerly MITRE ATT&CK Threat Intelligence Lead - to discuss applied threat intelligence, prioritizing threats for impact, and working incident response in remote environments.

December 7, 2020 / 1 minute read

Join us for an hour-long panel on the intricacies of XDR and how it will affect the security industry. Learn what XDR is, specific use cases, and how security practitioners can easily integrate this new technology into their security stack.

December 4, 2020 / 1 minute read

One owl was no longer enough to represent all the many special superpowers defenders need to fight and win against today’s cyber attackers. We’d need a team of owls to tell this big a story. And this is how Cybereason’s League of Defenders was born.

December 4, 2020 / 2 minute read

Exercising caution around email links, locking down payment cards and investing in a password vault can help users stay safe and happy online during the holidays.

December 2, 2020 / 2 minute read

We spent some time with Rachel Tobac discussing techniques, awareness and training for organizations seeking to limit the risk from one of the most difficult security threats to counter - social engineering attacks

November 30, 2020 / 1 minute read

Egregor is a newly identified ransomware variant that was first discovered in September, 2020, and has recently been identified in several sophisticated attacks on organizations worldwide, including the games industry giants Crytek and Ubisoft. 

November 26, 2020 / 5 minute read

Cybereason is pleased to announce we were named one of the Top Places to Work in 2020 by The Boston Globe, which recognizes the most admired workplaces in the state voted on by the people who know them best—their employees.

November 23, 2020 / 2 minute read

Cybereason CSO Sam Curry shares insights on tackling tough security challenges from a strategic perspective as well as from the point of view of a leader of security operations teams working tirelessly to reverse the adversary advantage and return the high ground to the defenders.

November 23, 2020 / 1 minute read

Operation GUNMAN commenced debugging of electronic devices in the US embassy in the USSR and resulted in a surprising discovery that made the NSA what it is today - check it out...

November 22, 2020 /

There have been reports of MedusaLocker attacks across multiple industries, especially the healthcare industry which suffered a great deal of ransomware attacks during the COVID-19 pandemic.

November 19, 2020 / 4 minute read

Shoppers flocking to online sites for their holiday shopping this year can do it safely and securely by following Cybereason’s recommendations.

November 18, 2020 / 3 minute read

The Cybereason Nocturnus Team has identified an active campaign targeting customers of a larger e-commerce platform with newly identified multi-stage malware that evades antivirus tools dubbed Chaes. 

November 18, 2020 / 2 minute read

Not long ago we were fortunate to grab some time with Steph Ihezukwu who shared her insights and observation on everything from diversity in tech to how to collaborate with teams in the age of remote work and heightened security concerns.

November 16, 2020 / 1 minute read

Cybereason XDR is a unified solution that is operation-centric, fusing endpoint telemetry with behavioral analytics to empower global enterprises to swiftly detect and end entire attack operations on the endpoint, in the cloud, on mobile devices and everywhere on their networks.

November 11, 2020 / 3 minute read