Summary
When security controls fail, attackers can remain in an environment for extended periods of time. Detecting advanced attackers is beyond the capabilities of many security programs. A threat hunt fills this gap.
Benefits
- Can determine if malicious code is present in an environment.
- Determines if a prior incident has been completely eradicated.
- Provides the intelligence to deal with attackers and improve ongoing security.
- Prevents further issues making better use of existing tools.
Process
Our threat hunt platform is deployed into an environment allowing us to collect information for analysis and to determine if an infection is present.
Our extensive experience and knowledge of adversarial behaviour combined with our intelligence efforts provides us with a deep understanding of what an attacker is likely to do. If malware is present, then we’ll provide recommendations on how to deal with it and look to improve security going forward.
RELATED RESOURCES
RELATED RESOURCES
- Jan 06,2021
1 min read
On this Episode, Mike talks with Catherine Johnston, the Deputy Director for Intelligence at US Indo-Pacific Command.
- May 27,2020
1 min read
During the ongoing COVID-19 outbreak many security professionals have by necessity been operating tactically & in response mode, trying to identify and mitigate the security risks of organisations that have had to move rapidly to remote working.
- Apr 16,2019
1 min read
Articles appear almost daily detailing yet another significant merger or acquisition, a trend common across sectors and geographies. Also growing are the number of de-mergers and spin-outs, with new entities being created from a larger parent organisation.