Anton on Security

APRIL 25, 2025

Dall-E security bloggingimage Top 10 posts with the most lifetime views (excluding paper announcement blogs, Medium postsonly): Security Correlation Then and Now: A Sad Truth AboutSIEM Can We Have Detection asCode? A SOC Tried To Detect Threats in the Cloud You Wont Believe What HappenedNext Top 10 SIEM Log Sources in Real Life?

Threat Detection 130

Threat Detection CISO Cloud Migration Digital transformation 130

Anton on Security

JULY 30, 2021

I’ve lamented on this a few times, either touching on general difficulties with detection , its uncertainty or highlighting the fragile detections people write. Related blog posts: “Modern Threat Detection at Google” (ep17) “Security Correlation Then and Now: A Sad Truth About SIEM” “What Are You NOT Detecting?” “Can

Threat Detection 130

Threat Detection Authentication Engineering Cybersecurity 130

Anton on Security

FEBRUARY 6, 2025

About Threat Intel Retro-Matching Focus Threat Intel Capabilities at Detection Engineering (Part 4) and the rest of theseries Blueprint for Threat Intel to Detection Flow (Part7) Back to Cooking: Detection Engineer vs Detection Consumer, Again?

Threat Detection 130

Threat Detection Engineering 130

The Last Watchdog

NOVEMBER 11, 2024

It could also help users identify various cybersecurity attacks, whether they are types of spoofing , phishing, social engineering, or malware. Waqas Apart from the training aspect, AR technology can also be used to enhance threat detection in real-time.

Cybersecurity 130

Cybersecurity Social Engineering Technology Threat Detection 130

Security Boulevard

FEBRUARY 13, 2023

In my more than ten years as a security analyst, engineer and now founder of a company that solves the challenges of security operations at scale, I’ve seen the successes and. The post The State of Threat Detection and Response appeared first on Security Boulevard.

Threat Detection 98

Threat Detection Engineering Security Awareness Cybersecurity 98

Penetration Testing

OCTOBER 19, 2024

A new and dangerous social engineering tactic, dubbed ClickFix, has emerged as a significant cybersecurity threat in 2024, according to a recent report from the Sekoia Threat Detection & Research... The post Beware of Fake Google Meet Invites: ClickFix Campaign Spreading Infostealers appeared first on Cybersecurity News.

Social Engineering 87

Social Engineering Threat Detection Engineering Cybersecurity 87

Anton on Security

MAY 4, 2023

To me, this SIEM content and false positives debate is a micro instantiation of a much bigger debate: the paradox between consuming security and engineering security. They essentially want to consume security, rather than engineer it. No, Detection as COOKING!” “How How to Measure Threat Detection Quality for an Organization?”

Engineering 130

Engineering Threat Detection Education Software 130

The Last Watchdog

OCTOBER 23, 2023

Splunk’s inability to migrate to a modern cloud-native architecture makes it difficult to take advantage of these cost-saving benefits or implement advanced data science use cases critical for threat detection. Impactful analysis A decoupled, purpose-built threat detection platform can work across distributed data lake architectures.

Architecture 261

Architecture Threat Detection Engineering Data collection 261

The Last Watchdog

DECEMBER 18, 2024

Organizations face rising risks of AI-driven social engineering and personal device breaches. Despite widespread cloud adoption, most SecOps teams rely on outdated, on-premises alert tools, leading to missed threats and wasted resources on false positives.

Risk 173

Risk Threat Detection Technology Phishing 173

SecureWorld News

JANUARY 22, 2025

Traditional security measures struggle to keep pace with the rapid evolution of AI-driven threats, often relying on outdated signature-based detection methods. Additionally, these conventional tools lack the contextual awareness needed to identify sophisticated social engineering tactics employed by AI-powered phishing campaigns.

Phishing 114

Phishing Threat Detection Social Engineering DNS 114

The Last Watchdog

MARCH 12, 2025

Acting as a proactive teammate, Aptori’s AI Security Engineer works alongside developers and security teams to identify security weaknesses, assess risk, and implement fixes in real-time. The result is deeper coverage and more precise security insights.

Risk 130

Risk Engineering Digital transformation Technology 130

Cisco Security

MAY 12, 2021

Our engineering team recognized that deploying another box, probe , or even VM at each location in the distributed network was no longer feasible. So we went to the source, the switch, and built in the ability to gather and send telemetry to the cloud to detect advanced persistent threats. . Customers have reported ?

Threat Detection 126

Threat Detection Engineering Network Security Malware 126

CyberSecurity Insiders

DECEMBER 19, 2022

LinkedIn, a professional social networking platform having 20,000 employees serving about 874 million members, has bolstered its IT Infrastructure to protect against the prevailing sophistication driven cybersecurity threats. The post LinkedIn bolsters its cyber threat detection with Moonbase appeared first on Cybersecurity Insiders.

Threat Detection 95

Threat Detection Cyber threats Media Engineering 95

SecureWorld News

FEBRUARY 25, 2025

AI-powered threat detection is enabling organizations to identify and neutralize attacks faster, but adversarial AI is also supercharging cyber threats. According to the report: "AI can analyze vast amounts of security data in real time, identifying anomalies and potential threats faster than traditional methods.

Cybersecurity 95

Cybersecurity Social Engineering Artificial Intelligence Cyber threats 95

Duo's Security Blog

NOVEMBER 20, 2023

This group of English-speaking threat actors are known for launching sophisticated campaigns that can bypass weak MFA implementations, leveraging tactics such as SIM swapping, adversary-in-the-middle (AiTM) techniques, and social engineering to gain unauthorized access to organizations’ sensitive data.

Threat Detection 138

Threat Detection Authentication Accountability Data breaches 138

Anton on Security

OCTOBER 18, 2023

This blog series was written jointly with Amine Besson, Principal Cyber Engineer, Behemoth CyberDefence and one more anonymous collaborator. Incomplete, too high-level or overly specific data leads to long analysis time, bias and ultimately inconsistent detection quality and detection coverage gaps.

Engineering 130

Engineering Threat Detection Threat Reports Passwords 130

SecureWorld News

NOVEMBER 8, 2023

Social engineering attacks have long been a threat to businesses worldwide, statistically comprising roughly 98% of cyberattacks worldwide. Given the much more psychologically focused and methodical ways that social engineering attacks can be conducted, it makes spotting them hard to do.

Social Engineering 113

Social Engineering Engineering Cyber Attacks Artificial Intelligence 113

eSecurity Planet

JUNE 6, 2023

” Also read: Implementing and Managing Your SIEM Securely: A Checklist Detection Engineering Helping security analysts parse the data that comes in is also an ongoing challenge. To address that challenge, Gurucul is seeing the rise of detection engineering groups, Raja said.

Threat Detection 98

Threat Detection Engineering Architecture Cyber Attacks 98

SecureWorld News

DECEMBER 17, 2024

Researchers at Datadog Security Labs have uncovered a year-long, large-scale cybercrime campaign by a threat actor tracked as MUT-1244. This operation, which blends social engineering and technical exploitation, has resulted in the theft of more than 390,000 WordPress credentials. Be cautious of unfamiliar GitHub repositories.

Phishing 109

Phishing Threat Detection Social Engineering Cybercrime 109

The Last Watchdog

DECEMBER 16, 2024

Hurd Wayne Hurd , VP of Sales, Luminys Video Surveillance as a Service (VSaaS) advancements will provide more accurate threat detection that allows security teams to focus on real risks, minimizing false alarms. Security teams will need to address the unique risks posed using LLMs in mission critical environments.

Cyber threats 264

Cyber threats CISO IoT Phishing 264

Security Boulevard

JANUARY 7, 2025

Ramat Gan, Israel, January 7th, 2025, CyberNewswire CyTwist , a leader in advanced next-generation threat detection solutions, has launched its patented detection engine to combat the insidious rise of AI-generated malware.

Threat Detection 52

Threat Detection Engineering Malware Cybersecurity 52

SecureWorld News

JANUARY 7, 2025

Beware the Poisoned Apple: Defending Against Malware and Social Engineering Just like Snow White was tricked into accepting a poisoned apple from the Evil Queen, malware and social engineering attacks exploit trust to deliver harmful payloads. Are your defenses ready to withstand a "Jack"?

Cybersecurity 113

Cybersecurity Social Engineering Phishing Engineering 113

Anton on Security

DECEMBER 20, 2021

Skills, Not Tiers” “Beware: Clown-grade SOCs Still Abound”” “Revisiting the Visibility Triad for 2020” Top 5 posts with the most Medium fans : “Security Correlation Then and Now: A Sad Truth About SIEM” “Beware: Clown-grade SOCs Still Abound” “Can We Have “Detection as Code”?” “Why Why Is Threat Detection Hard?” “A

Threat Detection 44

Threat Detection Cloud Migration Encryption Engineering 44

SecureWorld News

OCTOBER 3, 2023

And one of the most successful and increasingly prevalent ways of attack has come from social engineering, which is when criminals manipulate humans directly to gain access to confidential information. Social engineering is more sophisticated than ever, and its most advanced iteration is the topic of today's discussion: deepfakes.

Social Engineering 109

Social Engineering Phishing Engineering Technology 109

CyberSecurity Insiders

NOVEMBER 3, 2021

Reversing binaries is an essential skill if you want to pursue a career as exploit developer, reverse engineer or programming. ” The post Reversing a binary using GDB: tutorial for Reverse Engineers appeared first on Cybersecurity Insiders. This blog was written by an independent guest blogger.

Engineering 127

Engineering Software Threat Detection Cyber threats 127

The Last Watchdog

MARCH 31, 2022

The good news is, artificial intelligence is here and is showing great promise to deliver what the market needs, that is, pre-emptive and proactive threat detection. The TCU is designed as a stand-alone processor that will reside on a motherboard next to a CPU, GPU or other compute engine.

Artificial Intelligence 229

Artificial Intelligence Threat Detection Engineering Software 229

Anton on Security

AUGUST 30, 2021

The evolution of security operations in general and SOCs in particular is heavily dependent on a drive towards an engineering-first mindset while operating modern, more secure systems at large scale. Try spending the remaining 50% on improving systems and detections with an “automate-first”, engineering mindset.

Engineering 273

Engineering Marketing Education Threat Detection 273

Anton on Security

SEPTEMBER 16, 2021

Skills, Not Tiers” “Beware: Clown-grade SOCs Still Abound”” “New Paper: “Future of the SOC: Forces shaping modern security operations”” Top 5 posts with the most Medium fans : “Security Correlation Then and Now: A Sad Truth About SIEM” “Beware: Clown-grade SOCs Still Abound” “Can We Have “Detection as Code”?” “Why Now, posts by topic.

Threat Detection 42

Threat Detection Cloud Migration Encryption Engineering 42

SecureWorld News

FEBRUARY 15, 2024

The hackers rely heavily on social engineering tactics to distribute the malware. Education on verifying app downloads, MFA, advanced threat detection, encrypted communications, and tighter mobile device management controls can all contribute to protecting users.

Social Engineering 103

Social Engineering Mobile Authentication Engineering 103

The Hacker News

FEBRUARY 24, 2021

New research has uncovered a significant increase in QuickBooks file data theft using social engineering tricks to deliver malware and exploit the accounting software. "A

Social Engineering 140

Social Engineering Antivirus Threat Detection Engineering 140

The Last Watchdog

JUNE 10, 2024

June 10, 2024, CyberNewsWire — AI SPERA, a leader in Cyber Threat Intelligence (CTI) solutions, announced that it has started selling its paid threat detection data from its CTI search engine ‘ Criminal IP ‘ on the Snowflake Marketplace. Torrance, Calif.,

Cyber threats 147

Cyber threats Threat Detection Engineering Media 147

SecureWorld News

MARCH 13, 2025

AI-powered security solutions can analyze vast datasets to identify subtle indicators of compromise, automate threat detection, and predict emerging attack vectors. Hardening endpoints to increase the cost of attack Trey Ford, Chief Information Security Officer at Bugcrowd, takes a pragmatic approach to AI-driven cyber threats.

Malware 112

Malware Cybersecurity Cyber threats Threat Detection 112

SecureWorld News

FEBRUARY 5, 2025

AI, a double-edged sword AI-driven cybersecurity tools enhance threat detection but also empower attackers with sophisticated social engineering, deepfake campaigns, and automated exploits. Identity Threat Detection and Response (ITDR) is gaining traction to counter AI-enabled identity fraud.

InfoSec 76

InfoSec Energy and Utilities Cybersecurity Education 76

Anton on Security

MARCH 3, 2022

“Why Is Threat Detection Hard?” “A Episode 17 “Modern Threat Detection at Google” Random fun new posts: “Anton and The Great XDR Debate, Part 3” “Left of SIEM? Security operations / detection & response: “Security Correlation Then and Now: A Sad Truth About SIEM” “Can We Have “Detection as Code”?”

Threat Detection 189

Threat Detection Cloud Migration Encryption Engineering 189

SecureWorld News

MARCH 17, 2025

AI-driven threat detection Implementing AI-driven threat detection allows your organization to analyze enormous volumes of data in real-time. You must equip your staff with the knowledge to recognize phishing attempts, social engineering ploys, and other common cyber threats through regular, targeted training sessions.

Cyber Attacks 111

Cyber Attacks Digital transformation Threat Detection Penetration Testing 111

Security Boulevard

OCTOBER 15, 2021

Aqua Security this week at the Kubecon + CloudNativeCon North America conference added a cloud-native detection and response (CNDR) capability to its open source Tracee software-based platform. The post Aqua Security Uses eBPF to Extend Security Platform appeared first on Security Boulevard.

Threat Detection 126

Threat Detection Engineering Software Cybersecurity 126

Anton on Security

SEPTEMBER 27, 2024

Beware: Clown-grade SOCs Still Abound Detection Engineering is Painful — and It Shouldn’t Be (Part 1) [now a 10 post series, not yet finished…] Why is Threat Detection Hard? Revisiting the Visibility Triad for 2020” “ Beware: Clown-grade SOCs Still Abound ” “Why is Threat Detection Hard?” “A

Cloud Migration 130

Cloud Migration Threat Detection Digital transformation CISO 130