Threat Intelligence Tradecraft

Iranian Cyber Threats: Practical Advice for Security Professionals
January 6, 2020

Unless you went very dark for an extended holiday break, you are no doubt very well aware of the United …

read more

The evolving story of the Citrix ADC Vulnerability: Ears to the Ground

February 18, 2020

  The dust hasn’t quite settled on the Citrix ADC vulnerability technically known as CVE-2019-19781, and affectionately known as “Sh*&rix” …

read more

ShadowTalk Update – OurMine Hacks, Equifax Indictment, and SWIFT POC attack

February 17, 2020

Roses are red, violets are blue, here’s our threat intel podcast, just for you! Kacey, Charles, Alex, and Harrison have …

read more

The Devil, the Details, and the Analysis of Competing Hypothesis

February 13, 2020

  Digital Shadows’ Photon Research Team recently released a comprehensive examination of the Analysis of Competing Hypothesis (ACH) method, in …

read more

ShadowTalk Update – CTI Frameworks, Wawa Breach Updates, APT34, and Coronavirus Phishing Scams

February 10, 2020

In this week’s episode, Jamie starts by talking about his recent blog, Cyber Threat Intelligence Frameworks, with 5 rules for …

read more

Red Team Blues: A 10 step security program for Windows Active Directory environments

February 6, 2020

  A fun tweet crossed our path recently, the author asked, “Redteam operators: Which defensive settings have you encountered that …

read more

How to Operationalize Threat Intelligence: Actionability and Context

February 5, 2020

  In 1988 the idea of a Computer Emergency Response Team was first introduced at Carnegie Mellon University. Fast-forward through …

read more

ShadowTalk Update – SANS CTI Summit, Snake Ransomware, CacheOut, and Citrix Vuln Update

February 3, 2020

Rick Holland jumps in to kick-off this week’s episode to recap the 2020 SANS CTI Summit with Harrison. Then Harrison, …

read more

Cyber Threat Intelligence Frameworks: 5 Rules for Integrating These Frameworks

January 29, 2020

  As the cyber threat intelligence (CTI) industry continues to grow, so does the discipline’s thinking tools. Whether your intelligence …

read more

SANS Cyber Threat Intelligence Summit 2020: A Recap

January 28, 2020

  Last week I attended the eighth annual SANS Cyber Threat Intelligence Summit in Crystal City, Virginia. I want to …

read more

ShadowTalk Update – Citrix Vulnerability, Microsoft Data Breach, and Telnet Credentials Published

January 27, 2020

Following on from last week, Citrix released a first set of patches to fix a vulnerability (CVE-2019 -19781) affecting the …

read more