The History of APT10
May 16, 2023
APT10, also known as Stone Panda, is a sophisticated Chinese state-sponsored cyber-espionage group...
JAMF Protect Integration with Netwitness
May 9, 2023
Jamf Protect enhances endpoint security of Apple’s built-in security features by increasing...
Integration of Symantec Endpoint Security with Netwitness Platform
May 9, 2023
Endpoint security is the practice of securing entry point of end users such as desktops, laptops,...
Zscaler Integrations with Netwitness
April 3, 2023
Zscaler is a cloud-based security platform that provides users with protection from online threats....
FirstWatch Threat Spotlight: Truly Asynchronous AsyncRAT
March 24, 2023
Author: Rajas Save Introduction The AsyncRAT malware family seems to have been re-emerged in...
File Activity Alert Optimization in Multi-EPS Deployment
March 16, 2023
In 12.1 and older versions, if a file present on a host such as Host 1 was found malicious or...
Threat Profile Series: An Introduction to Royal Ransomware
March 14, 2023
Towards the end of 2022, researchers at SOCRadar recognized a relatively new cyber gang, Royal, as...
FirstWatch Threat Spotlight: APT-C-36
February 27, 2023
Background APT-C-36, also known as Blind Eagle, is believed to be a South American espionage group...
DCSync Detection with NetWitness
February 7, 2023
Introduction In this post we will look at the DCSync OS Credential Dumping technique targeting...
FirstWatch Threat Spotlight: Brute Ratel C4
January 31, 2023
Executive Summary Adversaries have been observed abusing legitimate adversary simulation software...