Clik here to view.
Supercharge Your SOC
Uncovering emerging threats with Network Behavior AnalyticsTelemetry used by SOC analysts to identify compromised hosts stems from IDS sensors, EDR and antivirus running on endpoints, and SIEM...
View ArticleClik here to view.
A Deeper Look at Dangerous TLDs
Each day at AlphaSOC we process billions of network events to identify infected hosts and anomalies within customer environments. Our analytics engine scores DNS, IP, and HTTP telemetry to uncover...
View ArticleClik here to view.
PUPs: The Ultimate Pervasive Threat
How potentially unwanted programs (PUPs) are blowing networks wide openAlphaSOC processes billions of network events each day to identify infected hosts and anomalies within customer environments. Our...
View ArticleClik here to view.
The Computer Safety Industry
The Computer Safety Industry?Thinking of a system as either secure or insecure is nonsensical — these are misnomers that we should abandon. Many organizations believe they operate secure computer...
View ArticleClik here to view.
Understanding the Mechanics Behind the Cyber Skills Shortage
CyberSeek publishes and maintains a Cybersecurity Supply / Demand Heat Map online, as summarized below. The site tracks open job postings across the United States, and today reports that there are over...
View ArticleClik here to view.
The Problem with Indicator Lists
AlphaSOC processes 3B daily network events from customer environments across technology, healthcare, defense, retail, finance, and higher education verticals. Security teams send us their DNS,...
View ArticleClik here to view.
Automating the Hunt
Through Network Behavior Analytics for Splunk and our native integrations for Demisto and Graylog, we instantly enrich network indicators (FQDNs, URLs, and IP addresses) to provide security teams with...
View ArticleClik here to view.
DNS over HTTPS — the tip of a network visibility iceberg
DNS over HTTPS — the tip of a network visibility icebergWithin the industry there’s been a lot of talk lately around DNS over HTTPS (DoH) and how adversaries use the channel to perform C2 DNS lookups...
View ArticleClik here to view.
Moving Beyond Indicator Lists
AlphaSOC processes network telemetry to highlight both known and unknown emerging threats. Using our layered analytics approach, security teams uncover three times more malware than with indicator...
View ArticleClik here to view.
Uncover Detection Blindspots with Network Flight Simulator
Today at AlphaSOC we released Network Flight Simulator (flightsim) 2.2.1, which is our free, open source adversary simulation tool. This latest release includes a number of new modules that security...
View Article
