Lucene search
K

4 matches found

Pen Test Partners Blog
Pen Test Partners Blog
added 2025/03/24 6:29 a.m.12 views

The first 24 hours of a cyber incident. A practical playbook

TL;DR The first 24 hours after a cyber incident are critical for containment and recovery. Small and medium-sized businesses SMBs often lack resources, but swift action is still possible. This playbook provides clear steps to follow in the heat of a breach: who to contact, what to do, and how to...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/06/27 8:0 a.m.17 views

Understanding ransomware reinfection: An MDR case study

Ransomware is like that stubborn cold that you thought you kicked, but creeps back up determined to run amok again. The question is what medicine is available to kick this nasty infection for good. In this post, we'll break down the idea of ransomware reinfection and share a real-life episode whe...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2022/03/17 12:33 p.m.24 views

The Golden Hour of Incident Response

As a CSIRT consultant, I cannot overemphasize the importance of effectively managing the first hour in a critical incident. Finding out what to do is often a daunting task in a critical incident. In addition, the feeling of uneasiness often prevents an incident response analyst from making...

6.7AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2020/09/21 2:30 p.m.154 views

Define What to Parse From Logs with the Custom Parsing Tool in InsightIDR

Data is essential to any SIEM. Generally, this data is collected from logs, endpoints, and networks. All of this data paints a holistic picture of your network so you have constant visibility into what’s going on, and where. When it comes to security data, log data is the primary driver. In...

7.2AI score
Exploits0
Rows per page
Query Builder