Data breach notification- your time is running out

Throughout the globe, regulatory bodies are tightening their grip over companies and organizations that handle personal information, enforcing more stringent data and privacy rules and mandating breach notification. Data breach notification laws regulate how companies notify their customers of data … Read More

Don’t cry- Luckily it was just Ransomware

As I write this sentence, the humongous, nightmarish cyber attack that took place during the weekend of May 12th has gained the perpetrators only $26,000, according to Security Reporter Brian Krebs. At SecBI, we’ve closely watched the story unfold and … Read More

WannaCry ransomware attack: a technical analysis

Overview On Friday, May 12, several thousand computers were infected with a new ransomware variant called WannaCry. Using a traditional delivery method, it nonetheless made a huge impact by automatically and quickly infecting multiple servers within each organization it attacked. … Read More

AI and you- Artificial Intelligence in Cybersecurity

Artificial intelligence is the buzzword in the security world today. It is expected to totally revolutionize cybersecurity and incident response, and even solve the impending skills shortage crisis. Investments in AI are expected to grow 300% in the next couple … Read More

Are You Still Chasing Alerts Instead of Chasing Your Adversaries?

Today’s hackers have easy access to sophisticated tools that enable them to launch extremely stealthy attacks at very low cost. These attacks can bypass traditional security mechanisms such as firewall, anti-virus and endpoint detection. In an attempt to fight these … Read More

European and US businesses in the crosshairs of nation state cyber espionage

Corporations used to think that their main threat was from cyber criminals, but recent events have changed this notion. According to a new report by Trend Micro, European and U.S. businesses now see cyber espionage as the biggest threat to … Read More

Detection and Response is Top Security Priority for Organizations in 2017

Research firm Gartner today released a report titled “Market Insight: Security Market Transformation Disrupted by the Emergence of Smart, Pervasive and Efficient Security.” The report focuses on the shift in security spending from a prevention-only approach to enhanced detection and … Read More

2017 Cyber Security Predictions

As we greet another new year, we must remain vigilant in our fight against hackers and cyber criminals. Today’s sophisticated threats can have devastating effects on businesses, and they are only getting worse.  In this post, I have outlined three … Read More

If nobody looks at the alerts in the SIEM, are they really alerts?

It’s amazing how often I come across this statement from organizations. The motivation is good – better detection. Sometimes it involves implementing the latest behavioral-detection, or setting the IDS to alert anomalies, or maybe even just adding a rule to … Read More

Re: Rise of non-deterministic Security!

Anton Chuvakin wrote a great blog about the future of machine-learning in cyber-security. My response was a bit too long for a comment, so I decided to post it as a blog instead. There are three different things that were … Read More