Recent Articles
XDRaaS - Quick Start Guide (QSG)
XDRaaS – Quick Start Guide The following items will help guide you through what CyFlare’s deployment team will be working on with you, to get you ingesting data, and moving to being monitored, by the SOC, as quickly as possible. The main items that ...
Microsoft Exchange Zero Day Exploits Guidance and Information
Name : Exploitation of Microsoft Exchange Servers ON PREM Zero-day vulnerabilities Threat Actor(who is behind the attacks): Linked to HAFNIUM who previously targeted various US based companies in GAS, law firms etc., What is Bad: Attacker does not ...
Alienvault-Advisory
SolarWinds Orion Supply Chain Attack Detections in AT&T Unified Security Management™ and IoCs in the AT&T Alien Labs Open Threat Exchange™ December 16, 2020, 11:15am (CST) TLP: Amber Dear USM Customer, The details of this ...
XDR: Vendor Advisory for SolarWinds Orion Products - Countermeasure guidelines
December 2020 Detect SolarWinds SUNBURST Backdoor with Stellar Cyber Open-XDR Platform On December 13 2020, multiple vendors such as FireEye and Microsoft reported emerging threats from a nation-state threat actor who compromised SolarWinds, and ...
CyFlare Detection List & MITRE ATT&CK Framework Mapping
Purpose This document identifies the detections that are available to CyFlare clients from the identified managed security services. Filters & Definitions State - This represents whether the default mode for the detection. It may be On or Off by ...