• Home
  • Authors
  • Lior Div

About Lior Div

Lior Div

Lior Div, CEO and co-founder of Cybereason, began his career and later served as a Commander in the famed Unit 8200. His team conducted nation-state offensive operations with a 100% success rate for penetration of targets. He is a renowned expert in hacking operations, forensics, reverse engineering, malware analysis, cryptography and evasion. Lior has a very unique perspective on the most advanced attack techniques and how to leverage that knowledge to gain an advantage over the adversary. This perspective was key to developing an operation-centric approach to defending against the most advanced attacks and represents the direction security operations must take to ensure a future-ready defense posture.

All posts by Lior Div

Grief Gang’s New Quadruple Extortion Scheme Doesn’t Change the Game

A new twist from the Grief Gang ransomware group raises the ransomware stakes to quadruple extortion, but it doesn't matter. The only effective defense against ransomware is to stop it before it gets to the extortion phase.

September 17, 2021 / 2 minute read

Microsoft Zero-Day-of-the-Month Club

Microsoft alerted customers to yet another zero-day flaw being exploited in the wild. There will continue to be zero-day vulnerabilities, but organizations need to defend against attacks anyway...

September 10, 2021 / 3 minute read

Microsoft Vulnerability Exposes Thousands to Risk…Again

Microsoft leverages its dominance in the enterprise market to try and push its security tools, but repeated security failures and massive breaches demonstrate that organizations shouldn't trust their security to Microsoft. It takes an operation-centric approach and a company dedicated to one thing--protecting customers against attacks.

September 2, 2021 / 2 minute read

Afghanistan, the Taliban and National Security

It's been a chaotic week with the situation in Afghanistan and the alleged cyber attack at the US State Department. Cybereason CEO Lior Div shares his thoughts on the implications for national security and what it means for cybersecurity in general...

August 26, 2021 / 2 minute read

T-Mobile and BlackBerry: More Lessons Learned the Hard Way

T-Mobile and BlackBerry made the news this week, but there are cybersecurity headlines every week. The lesson we need to learn from these events is that organizations need to be able to detect and stop malicious operations regardless of the latest vulnerability or data breach...

August 19, 2021 / 2 minute read

LockBit Ransomware Wants to Hire Your Employees

Cybereason CEO Lior Div talks about the latest ransomware attacks from LockBit and the insidious new twist LockBit has introduced--openly soliciting employees to help launch ransomware attacks from the inside...

August 12, 2021 / 2 minute read

‘DeadRinger’ Reveals Pervasive Cyber Espionage Campaign

Cybereason CEO Lior Div shares his thoughts on the DeadRinger report from the Cybereason Nocturnus team and the implications it has for cyber espionage and international rules of engagement for cyber attacks...

August 6, 2021 / 2 minute read

Ransomware Attacks: Will G7 and Biden-Putin Summits Prove Fruitful?

Cybereason CEO Lior Div shares his thoughts on the recent G7 meeting, the summit between Biden and Putin, and what it means for cybersecurity moving forward...

June 25, 2021 / 2 minute read

Deja Vu: What Do NotPetya and SolarWinds Have in Common?

Cybereason CEO Lior Div shares the experience of battling against NotPetya and the parallels that make the SolarWinds attack feel like deja vu...

June 15, 2021 / 3 minute read

The Line in the Sand: How We Respond Today Impacts Our Security Tomorrow

Cybereason CEO Lior Div shares his thoughts on how the United States needs to respond today in order to draw a line in the sand and prevent major attacks...

June 1, 2021 / 3 minute read

New Cybersecurity Executive Order: Will It Have Impact?

Biden's Executive Order (EO) focuses on response, reporting, and reinforcing, but how can we ensure that attackers know there are consequences?

May 25, 2021 / 3 minute read

Solving the Ransomware Crisis

Cybereason CEO Lior Div shares his thoughts on the global ransomware crisis and the efforts of the Ransomware Task Force to foster a collaborative "win as one" effort to develop effective strategies to address it.

May 14, 2021 / 3 minute read

100 Days Down, 1,360 Days of Nation-State Cybersecurity Threats to Go

Cybereason co-founder and CEO Lior Div takes a look at how the Biden team is addressing cybersecurity challenges as the administration hits the 'first 100 days' milestone...

April 30, 2021 / 3 minute read

HAFNIUM Exploits Live On

New research shows that cybercriminals continue to target vulnerabilities in Microsoft Exchange, highlighting the need for a better approach to cybersecurity...

April 22, 2021 / 2 minute read

2021 Security Crystal Ball: Trends and Predictions for the Year Ahead

Here are a handful of likely moves from the cyber adversaries in 2021 and where the risk lies.

December 22, 2020 / 11 minute read

UbU: Championing Diversity, Equity, and Inclusion at Cybereason

UbU (“you be you”) is the value that sits front and center at Cybereason. Acceptance of every person is at the heart of who we are as a company. As we celebrate PRIDE week (as we do every year), we also grieve the racism and violence taking place around us.

June 12, 2020 / 1 minute read

Q&A: Maintaining Secure Business Continuity with Lior Div

I have been actively counseling CEOs on how best to secure business continuity during this difficult time, and want to make those recommendations available to everyone.

April 20, 2020 / 2 minute read

Q&A: Cybereason CEO Lior Div on Responding to COVID-19

'Responding to the unknown is part of our DNA.' Read more of a Q&A with Lior Div on how Cybereason responded to the COVID-19 pandemic.

April 13, 2020 / 5 minute read

Cybereason named Israel’s most promising startup

Cybereason was named Israel’s most promising startup by Calcalist, the country's leading financial newspaper, edging out other cybersecurity startups.

April 19, 2018 / 2 minute read

Cybereason Raises $100 Million from SoftBank

Cybereason announces the signing of a $100 million investment from SoftBank Corp. Following this financing, Cybereason has raised a total of $189 million in capital from SoftBank, CRV, Spark Capital,

June 20, 2017 / 1 minute read

How security executives can feel comfortable in the boardroom and server room

Security leaders now play a role that goes beyond traditional security duties and encompasses contributing to critical elements of the business.

June 7, 2017 / 3 minute read

Lior Div in Network World: What enterprises should take away from the CIA leak

The Vault 7 leak can teach businesses lessons around the challenges of attack attribution, the risks posed by nation-state tools, and more.

March 30, 2017 / 2 minute read

Toss Out the playbook to staff the security team of the future

Toss Out the playbook to staff the security team of the future

March 14, 2017 / 3 minute read

Five lessons learned on the journey from Innovation Sandbox to global cybersecurity company

The RSAC 2015 Innovation Sandbox contest served as Cybereason’s debut to the security community.

February 3, 2017 / 2 minute read

Information security priorities for Trump's administration

In a recent Network World column, Cybereason CEO Lior Div explained why information security needs to be emphasized in all federal government agencies, just not those traditionally associated with IT

December 27, 2016 / 3 minute read

How the US government can help businesses fight cyber attacks

Cybereason CEO Lior Div discusses why companies need help from the U.S. government if they’re going to face adversaries who are using nation-state attack techniques.

November 17, 2016 / 2 minute read

The future of security: A combination of cyber and physical defense

As more items gain web connectivity as part of the Internet of Things movement, the need to protect devices from hackers and physical damage will only increase.

October 26, 2016 / 3 minute read

Behavioral detection becomes critical as nation-state hacking capabilities go mainstream

Nation-state hacking tools are now available to any hacker, meaning businesses are facing advanced threats that require them to rethink how they approach information security.

September 26, 2016 / 2 minute read

Is Fancy Bear really behind the World Anti-Doping Agency and DNC hacks?

Attack attribution may make headlines but does little to improve enterprise security. Cybereason CEO Lior Div explains why companies should spend less time figuring out if Russia or China was behind a

September 15, 2016 / 2 minute read

Lior Div in Network World: Attack attribution does little to improve enterprise security

Evidence is easy to alter in the online world, making accurate attack attribution difficult if not impossible.

August 22, 2016 / 3 minute read

Lior Div in Network World: Stop the attacker's offense, don’t do defense

Organizations need to approach cyber security by thinking about how they can stop offense.

July 28, 2016 / 2 minute read

Carbon Black's purchase of Confer shows EDR is the winning approach to cyber security

Carbon Black's purchase of Confer shows EDR is the winning approach to cyber security

July 19, 2016 / 1 minute read

Lior Div in Network World: The components of modern hacking operations

Cybereason CEO Lior Div explains how modern hacking operations are handled like a business operation and include hiring plans, budgets and timelines.

July 1, 2016 / 3 minute read

Lior Div in Network World: Rip up the script when assembling a modern security team

A diverse workforce leads to better security. Discard the playbook you typically use when forming a security team and the perspectives you gain will improve your company’s defenses.

May 23, 2016 / 3 minute read

Lior Div's post in Network World: What terrorism investigations can teach us about investigating cyber attacks

While terror attacks that have occurred in the physical world are making headlines, the virtual world is also under attack by sophisticated hackers.

April 20, 2016 / 3 minute read

Lior Div’s post in Network World: Hacking operations are as vulnerable as a house of cards

No matter what defensive measures are implemented, security teams will still be the underdog compared to the sophisticated enemies that they are facing.

April 12, 2016 / 3 minute read

Lior Div's Post in Network World: How my dyslexia launched my hacking career

Lior Div's Post in Network World: How my dyslexia launched my hacking career

February 18, 2016 / 3 minute read

APTs Will Force CISOs to "Grow-or-Go"

As advanced persistent threats (APTs) continue to take businesses off guard, CISO leadership will need to adapt or be left behind.

February 5, 2016 / 1 minute read

The Eternal Flaw of One-Shot Detection Methods

DGA.Changer has added a new trick to its arsenal: a technique that fools security tools into thinking they've captured it while it's already slipped away.

August 12, 2015 / 1 minute read

Forbes: Why The Hacking Team Breach Further Tips The Scales Against Businesses

Forbes: Why The Hacking Team Breach Further Tips The Scales Against Businesses

August 4, 2015 / 3 minute read

Forbes: Why It's Worth Divorcing Information Security From IT

These days, enterprise-computing environments are global, borderless, fully mobile, and extremely complex.

June 22, 2015 / 2 minute read

Lior Div in Forbes: Lessons From 2014 Mega Breaches: It's Time To Shift To A Post-Breach Mindset

Looking back at 2014’s mega breaches: from Home Depot to the Sony breach, it is clear that determined hackers will find their way into a network.

January 7, 2015 / 3 minute read

Too Fast To Remediate: Why The IT Mindset Is Risky When Applied To Security

Lior Div, CEO and Co-Founder of Cybereason discuss the risk of applying IT metrics and work processes to security.

December 5, 2014 / 3 minute read

Why are hackers ahead of the game?

Why are hackers ahead of the game?

November 24, 2014 /

Will the Excessive False Positives Syndrome Paralyze Security?

Will the Excessive False Positives Syndrome Paralyze Security?

November 24, 2014 / 1 minute read