Threat Hunting

Experts advise? Take pack the power by forcing the gray hat researcher into a prisoner's dilemma.

Following the SolarWinds hack security pros are turning to purple teams to lock down security. Today’s columnist, Victor Wieczorek of GuidePoint Security, offers a four-step process for deploying a purple team.

Organizations that boosted security budgets in response to the SolarWinds hack invested the most in threat hunting, according to a new survey.

The numbers provide a needed counterweight to the argument that automated hacking (or defense) can be a tonic for everything in the cyber realm.

While they’re easy for attackers to set up, web shells can be difficult for defenders to detect, since they’re often targeted to specific servers and can hide in the noise of internet traffic, scanning, probing and unsuccessful attacks that most organizations see on a daily basis.

Walmart has been one of the leading pioneers in developing purple teams. Today’s columnists, Timothy Nary and Clayton Barlow-Wilcox of Booz Allen, offer insight into how purple teams can boost overall security efforts.

At the core of the document is this message: a threat model that can’t be understood outside of the security team doesn’t make any company safer.