Recent reporting highlighted new techniques for a prominent group that already possessed a deep set of capabilities. As the pace of adversary TTP evolution increases, organizations must stay vigilant and regularly reassess their defenses against the latest TTPs used by relevant threats. This holds true even amid reports of threat group disruptions, as many groups continue to demonstrate resilience in the face of law enforcement operations and other pressures. 

The post Scattered Spider: Evolving & Resilient Group Proves Need for Constant Defender Vigilance appeared first on Security Boulevard.

In the latest edition of The TIDE: Threat-Informed Defense Education, we’re announcing new threat intelligence highlights, new direction for our Community Edition users, as well as the biggest release we’ve had yet of defensive technologies. It’s an exciting time at Tidal.

First up, I’m excited to share about Threat Object Stubs. In the past, if a user searched in Tidal Cyber Community Edition for an Enterprise Edition exclusive threat, they would have been left with the dreaded “no results.” Starting today, they will no longer see nothing, and instead see the threat object, its relationships to other objects, and references.

The post The TIDE: UNC5537, SCARLETEEL, new Threat Object Stubs, and now 303 defensive solution mappings (our biggest release yet!) appeared first on Security Boulevard.

This is our second installment of The TIDE, which is your guide to all things Threat-Informed Defense—at least in terms of what my Adversary Intelligence Team works on and provides to our customers weekly. Last week I wrote about the work that the Tidal CTI team did around Moonstone Sleet and the law enforcement activity around DarkGate, SocGholish, and DiceLoader. From a defensive standpoint, Tidal released newly modeled products for our Enterprise users to model different solutions, ensuring they got a basic understanding of what their capabilities could do to help their MITRE ATT&CK® coverage.  

The post The TIDE: Threat-Informed Defense Education (Qilin, RansomHub, BlackSuit) appeared first on Security Boulevard.