Deepwatch

🚨 Check out our latest Cyber Intelligence Brief, where our Deepwatch Adversary Tactics and Intelligence (ATI) team looks at new threats and techniques to deliver actionable intelligence for SecOps organizations. This week's Cyber Intelligence Digest ⤵️ ・APT40’s Espionage Techniques ・FIN7’s Vast Network Exposed ・CRYSTALRAY’s Credential Theft and Cryptomining ・New APT41-Linked Malware ・Snowflake Data Theft Impact Read now: https://deepwat.ch/3LtZAPN #Cybersecurity #ThreatResearch #ThreatIntel

Outcome-driven security tailored to your organization's specific needs is smart security. It's also smart business. According to a recent report by CyberArk, 93% Of organizations had two or more identity-related breaches in the past year. It's no wonder Gartner® forecasts global security and risk management spending to grow 14% in 2024. Organizations should understand the unique threats and vulnerabilities that can impact their goals and objectives. This recognition of risk is what will drive unique and cost-effective security outcomes, such as: ✅ High fidelity, low volume alerting ✅ Precision Response ✅ Improved security posture For effective cyber resilience, organizations should have demonstratable security outcomes to move beyond cybersecurity. #Cybersecurity #SecOps

We're getting closer to Black Hat 2024 - Request a meeting with our team! Make sure you come to see us during the Booth Crawl at Booth #1260 to hear how our Open Security Data Architecture is paving the way for modern security operations. You can also catch a demo from one of our expert team members and you won't want to miss our giveaways! 🤫 Get started here: https://deepwat.ch/4faJWGE #BlackHat24

Overnight, Deepwatch was made aware of an issue with CrowdStrike agents on Windows devices causing widespread outages. ⤵️ These outages have been traced back to an update applied to Windows hosts that resulted in Windows operating system crashes. Mac and Linux systems have not been impacted. Deepwatch operations were not impacted by this issue, and Deepwatch customers have been made aware of the situation and we are currently working with them through rollback and remediation steps where appropriate. Deepwatch has compiled a list of lessons learned and rollback steps that involve, at a high level: ・Boot recovering Windows hosts into SafeMode without Networking. ・BitLocker Key Server must have the remediation steps applied to it first. ・USB Device Control may need to be disabled to assist with remediation. ・A file will need to be deleted so admin rights may need to be temporarily provided to local IT teams. ・Post-patch review your FSMO (Flexible Single Master Operation) roles within Domain Controllers. Deepwatch customers can expect direct communication from their Customer Success Manager along with additional detailed lessons learned. ➡️ If you are impacted by this event, and not a Deepwatch customer, additional information can be found in the CrowdStrike tech alert via their support portal here: https://deepwat.ch/3WcyxNz

🎙️In our latest episode, we discuss the shift in the SIEM market, the importance of fostering partnerships beyond the security space, and the power of focusing on outcomes. "If I focus on the outcome so I can sleep at night and serve the business to be responsive, commoditization is a tremendous force, and I think it's something we all need to respond to and acknowledge." - Trey Ford Check out the latest #DeepwatchOverwatch episode where we dive deep into the evolving SIEM market and the impacts of recent consolidations. ▶️ https://deepwat.ch/3Wg5tpG #Cybersecurity #SIEM #SecOps

We’re a Representative Vendor! Get your copy of the June 2024 Market Guide for Managed Detection and Response report to find out why, with compliments from Deepwatch. ➡️ https://deepwat.ch/3zKx1uC #Cybersecurity #MDR #SecOps

🚨 Check out our latest Cyber Intelligence Brief, where our Deepwatch Adversary Tactics and Intelligence (ATI) team looks at new threats and techniques to deliver actionable intelligence for SecOps organizations. This week's Cyber Intelligence Digest ⤵️ ・Gootloader V3 Evolves ・Eldorado Ransomware Targets 16 Companies ・Rejetto HTTP File Server Exploited ・Advanced Backdoor Uses MSBuild Read now: https://deepwat.ch/3WlTk2D #Cybersecurity #ThreatResearch #ThreatIntel

Check out our July edition of The Watch Newsletter, featuring: ✅ The 2024 Gartner® Market Guide for MDR ✅ Curated Cyber Threat Intelligence ✅ The Latest From Deepwatch ✅ Upcoming Cyber Events! Be sure to Follow the Deepwatch page and subscribe to The Watch for future updates! #CyberResilience #CybersecurityNews #SecOps

In the latest podcast episode, the team dives deeper into the recent consolidations in the SIEM market. 🎙️ Check out this clip featuring our CISO, Trey Ford, and watch the full episode on YouTube: https://deepwat.ch/4cCoMPS #DeepwatchOverwatch #SecOps #SIEM

Deepwatch is named as a Representative Vendor in the following June 2024 Gartner® Market Guide for Managed Detection and Response report: https://deepwat.ch/4f1F3zm #MDR #Cybersecurity #Gartner