All Posts

How cybercriminals are taking advantage of COVID-19: Scams, fraud, and misinformation
March 12, 2020 read more

Cyber Threat Intelligence Frameworks: 5 Rules for Integrating These Frameworks

January 29, 2020

  As the cyber threat intelligence (CTI) industry continues to grow, so does the discipline’s thinking tools. Whether your intelligence …

read more

SANS Cyber Threat Intelligence Summit 2020: A Recap

January 28, 2020

  Last week I attended the eighth annual SANS Cyber Threat Intelligence Summit in Crystal City, Virginia. I want to …

read more

ShadowTalk Update – Citrix Vulnerability, Microsoft Data Breach, and Telnet Credentials Published

January 27, 2020

Following on from last week, Citrix released a first set of patches to fix a vulnerability (CVE-2019 -19781) affecting the …

read more

How Digital Shadows Helped Find and Remediate an Exposed Admin Password on Github

January 23, 2020

  I often get asked to share examples of the types of alerts we send to clients. I work on …

read more

Inside Digital Shadows: Davitt Potter Joins as Director of MSSP and Channels in the Americas

January 22, 2020

  I’ve spent over 25 years now in the channel supporting enterprise IT in some form or fashion.  After a …

read more

How the Cybercriminal Underground Mirrors the Real World

January 21, 2020

Mirror, Mirror, on the wall. Who’s the best cybercriminal of them all? The terms cybercriminal and hacker often conjure up …

read more

ShadowTalk Update – NSA Vulnerability Disclosure, Ransomware News, and Iran Updates

January 20, 2020

Kacey, Charles, Alex, and Harrison host this week’s threat intelligence update from Dallas. We kick off with vulnerabilities from the …

read more

Third Party Risk: 4 ways to manage your security ecosystem

January 16, 2020

  The digital economy has multiplied the number of suppliers that organizations work and interact with. Using a supplier can …

read more

NSA Vulnerability Disclosure: Pros and Cons

January 15, 2020

  On Monday, January 13th, Brian Krebs reported that Microsoft would be releasing “a software update on Tuesday to fix …

read more

CVE-2019-19781: Analyzing the Exploit

January 14, 2020

  On December 17th 2019, CVE-2019-19781 was disclosed. The vulnerability allows for directory traversal and remote code execution on Citrix …

read more