March 7, 2024
BackMyData Ransomware
Threat Research
Starting on February 11, a widespread ransomware attack struck 100 hospitals across Romania. The attackers exploited vulnerabilities in the hospitals’ systems, forcing them to take critical infrastructure offline. Ransomware Type: BackMyData The malware responsible for this attack belongs to the…
Read More
March 6, 2024
What is Threat Detection, Investigation and Response (TDIR)?
SOC Security Analytics
This detailed blog breaks down what Threat Detection Investigation and Response (TDIR) is, why it is needed, the challenges of implementing TDIR and tips for a successful program.
Read More
March 1, 2024
GO Stealer Malware Targeting Indian Air force – Cyber Espionage Campaign
Threat Research
In the ever-evolving landscape of cyber threats, a recent incident caught the attention of security experts and government agencies alike. Unidentified cyber attackers attempted to breach the internal computer systems of the Indian Air Force (IAF), aiming to steal sensitive…
Read More
February 22, 2024
TicTacToe Malware Dropper
Threat Research
Malware droppers are malicious software designed to deliver and execute additional malware on a victim system and are employed to obfuscate final payloads during load and initial execution. Droppers within this group employ multiple stages of obfuscated payloads loading reflectively…
Read More
February 15, 2024
Ultimate Guide to Identity Threat Detection and Response (ITDR)
SOC Insider Threat Security Analytics
Learn the fundamentals of what Identity Threat Detection and Response (ITDR) is, why it’s necessary and how to select the right ITDR solution.
Read More
February 14, 2024
Why Gurucul Is an Overall Leader in the 2024 KuppingerCole Leadership Compass for Intelligent SIEM
Learn why Gurucul was named an overall leader for intelligent SIEM in the 2024 KuppingerCole I-SIEM Leadership Compass.
Read More
February 2, 2024
DarkGate Malware
Threat Research
DarkGate is a complete toolkit that provides attackers with extensive capabilities to fully compromise victim systems. Darkgate is loader/botnet malware. DarkGate malware has been out there since 2017. Infection Chain: The analysis mentioned in our report is based on the…
Read More
January 24, 2024
Gurucul Threat Research: Androxgh0st Malware
Threat Research
AndroxGh0st is a “SMTP cracker” which is primarily intended to scan for and parse Laravel application secrets from exposed .env files. (Note: Laravel is an open source PHP framework and the Laravel .env file is often targeted for its various…
Read More
January 9, 2024
SIEM Replacement or SIEM Augmentation? How About Both!
SOC Security Analytics
Discover the benefits of SIEM augmentation and SIEM replacement. Learn how to improve threat detection and security operations for a modern security strategy.
Read More
January 5, 2024
Understanding Your SIEM Options
SOC Security Analytics
The SIEM market provides a lot of options today. Learn how to differentiate SIEM solutions and how to select the right SIEM tool.
Read More
January 3, 2024
Combating Identity-Based Cyber Threats with an Identity-Centric Next-Gen SIEM
SOC Insider Threat Security Analytics
Protect your organization from identity-based attacks with Next-Gen SIEM equipped with Identity Threat Detection and Response (ITDR) capabilities.
Read More
December 23, 2023
Five Ways to Improve Threat Detection Investigation & Response (TDIR) with a Next-Gen SIEM
SOC Security Analytics
Discover key themes and strategies to enhance your cybersecurity approach with Threat Detection Investigation and Response...
Read More