Blog

March 7, 2024

BackMyData Ransomware

Threat Research

Starting on February 11, a widespread ransomware attack struck 100 hospitals across Romania. The attackers exploited vulnerabilities in the hospitals’ systems, forcing them to take critical infrastructure offline. Ransomware Type: BackMyData The malware responsible for this attack belongs to the…

Read More

March 6, 2024

What is Threat Detection, Investigation and Response (TDIR)?

SOC Security Analytics

This detailed blog breaks down what Threat Detection Investigation and Response (TDIR) is, why it is needed, the challenges of implementing TDIR and tips for a successful program.

Read More

March 1, 2024

GO Stealer Malware Targeting Indian Air force – Cyber Espionage Campaign

Threat Research

In the ever-evolving landscape of cyber threats, a recent incident caught the attention of security experts and government agencies alike. Unidentified cyber attackers attempted to breach the internal computer systems of the Indian Air Force (IAF), aiming to steal sensitive…

Read More

February 22, 2024

TicTacToe Malware Dropper

Threat Research

Malware droppers are malicious software designed to deliver and execute additional malware on a victim system and are employed to obfuscate final payloads during load and initial execution. Droppers within this group employ multiple stages of obfuscated payloads loading reflectively…

Read More

February 15, 2024

Ultimate Guide to Identity Threat Detection and Response (ITDR)

SOC Insider Threat Security Analytics

Learn the fundamentals of what Identity Threat Detection and Response (ITDR) is, why it’s necessary and how to select the right ITDR solution.

Read More

February 14, 2024

Why Gurucul Is an Overall Leader in the 2024 KuppingerCole Leadership Compass for Intelligent SIEM

Learn why Gurucul was named an overall leader for intelligent SIEM in the 2024 KuppingerCole I-SIEM Leadership Compass.

Read More

February 2, 2024

DarkGate Malware

Threat Research

DarkGate is a complete toolkit that provides attackers with extensive capabilities to fully compromise victim systems. Darkgate is loader/botnet malware. DarkGate malware has been out there since 2017. Infection Chain: The analysis mentioned in our report is based on the…

Read More

January 24, 2024

Gurucul Threat Research: Androxgh0st Malware

Threat Research

AndroxGh0st is a “SMTP cracker” which is primarily intended to scan for and parse Laravel application secrets from exposed .env files. (Note: Laravel is an open source PHP framework and the Laravel .env file is often targeted for its various…

Read More

January 9, 2024

SIEM Replacement or SIEM Augmentation? How About Both!

SOC Security Analytics

Discover the benefits of SIEM augmentation and SIEM replacement. Learn how to improve threat detection and security operations for a modern security strategy.

Read More

January 5, 2024

Understanding Your SIEM Options

SOC Security Analytics

The SIEM market provides a lot of options today. Learn how to differentiate SIEM solutions and how to select the right SIEM tool.

Read More

January 3, 2024

Combating Identity-Based Cyber Threats with an Identity-Centric Next-Gen SIEM

SOC Insider Threat Security Analytics

Protect your organization from identity-based attacks with Next-Gen SIEM equipped with Identity Threat Detection and Response (ITDR) capabilities.

Read More

December 23, 2023

Five Ways to Improve Threat Detection Investigation & Response (TDIR) with a Next-Gen SIEM

SOC Security Analytics

Discover key themes and strategies to enhance your cybersecurity approach with Threat Detection Investigation and Response...

Read More