August | The Watch: Shining A Security Spotlight
Welcome to the August Edition of The Watch, featuring cyber intel from Deepwatch Labs, information security news, industry insights, and upcoming Deepwatch events. Hit the subscribe button to stay in the know!
?? IN THIS ISSUE:
?? Insights Blog: The Evasive Nature of Cybersecurity Risk
Cybersecurity leaders are beginning to recognize the potential impact cybersecurity has on their organizations both technically and on the entire business. In the following blog, Deepwatch CTO Wes Mullins shares more on how evasive the nature of cybersecurity risk can be, and how we help to prioritize and mitigate risk to bring clarity to an organization.
?? Deepwatch Cyber Threat Intelligence
Deepwatch provides curated cybersecurity threat intelligence to keep your organization and SOC ahead of the latest security threats and zero-day vulnerabilities. Below are a few top cyber threats & insights from the past month.
?? NetScaler ADC and Gateway CVE-2023-3519 Actively Exploited
What Happened
Citrix released a security bulletin for 3 CVEs affecting NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway). Citrix stated in their advisory that “exploits of CVE-2023-3519 on unmitigated appliances have been observed.”
The following supported versions of NetScaler ADC and NetScaler Gateway are affected by the vulnerabilities:
?? Storm-0978 (RomCom): Cyber-espionage Campaign Targeting NATO Talks, Exploiting CVE-2023-36884
What Happened
The threat actors employed spearphishing emails with malicious attachments to gain initial access, leveraging a remote code execution vulnerability (CVE-2023-36884) before its disclosure to Microsoft. They exhibit advanced social engineering skills and demonstrate a high level of technical capability. The threat actors’ political objective is to disrupt Ukraine’s NATO membership talks while gathering sensitive intelligence.
?? Securing Your Digital Frontiers: The Urgency of Guarding Against Cyber Espionage
More Information
In the high-stakes world of cybersecurity, the landscape is constantly evolving, pushing organizations to stay on their toes. Storm-0558, a China-based entity known for its technical prowess and operational security, is one threat actor making headlines. The actor has been linked to a cyber-espionage campaign that leverages acquired Microsoft account consumer signing keys to gain unauthorized access to Azure AD enterprise.
?? The New Red Team Tool Targeting Your Microsoft Teams: Mitigating the Potential Abuse of TeamsPhisher
As remote work communication platforms–like Microsoft Teams–have become indispensable in the corporate world, ensuring security and privacy is a challenge that has never been more critical. Now, a new red team tool, TeamsPhisher, is raising the stakes, potentially posing a significant risk to businesses heavily reliant on Microsoft Teams for their external communications. ?More here.
Subscribe to Deepwatch Labs to stay up-to-date on the latest cyber threat intelligence, advisories, and recommendations.
?? Deepwatch July Events?
Splunk .Conf!
The team at Deepwatch spent the week connecting with other industry professionals, and one lucky winner took home?an electric guitar!?
Deepwatch was also honored with the Marketing Partner of the Year for Outstanding Regional Partnership at the 2023 Splunk Regional Partner Awards!
领英推荐
?? The Evolution of Ransomware Detection and Response
Join Deepwatch Chief Technology Officer, Wesley M. , as he answers pertinent questions relating to the state of ransomware in 2023 and what organizations can do to both ward off potential ransomware breaches and efficiently recover if a breach is detected.
?? Deepwatch News!
Deepwatch has been named a winner of the CRN ? 2023 Tech Innovator Award for our Managed Detection and Response services!
This recognition is a testament to our industry-leading team of security experts and business visionaries, dedicated to protecting organizations from evolving threats around the clock.
CRN has named Lori Cornmesser , Deepwatch SVP of Global Channels & Alliances, to its exclusive 2023 Top 100 Executives List!
This annual list honors the passionate and hard-working technology executives who are supporting, growing, and redefining the IT channel. Lori achieved this recognition as a result of her passion and dedication to executing successful channel-focused strategies and initiatives on behalf of Deepwatch.
?? Trending Infosec Insights
?? Employee Spotlight
At Deepwatch, we value cultivating and recognizing leaders within our team.
We asked this month's Employee Spotlight, Tim Grossner , Principal Firewall Engineer, about what makes a great leader:
Leadership is a tough quality to measure. Vision, certainly. And loyalty. Being able to inspire others to work to their full potential.
View more information about working at Deepwatch!
?? UPCOMING EVENTS...
We’re headed to Black Hat!
If you’ll be attending Black Hat 2023, be sure to spend some time with Deepwatch while you're there.
This year we have multiple events where you can learn about our Advanced Managed Detection and Response (MDR) services. You can visit us at booth #660 to connect and see a demo, join us at one of our co-hosted special events or meet with our executives and experts one-on-one in our executive meeting suite. Visit our website here for more information.
About Deepwatch
Deepwatch is the leader in managed detection and response, protecting organizations from growing cyber threats 24/7/365. Powered by the Deepwatch SecOps Platform, we provide the industry’s fastest, most comprehensive detection and automated response to cyber threats along with tailored guidance from dedicated experts to mitigate risk and measurably improve security posture. Hundreds of organizations, from Fortune 100 to mid-sized enterprises, trust Deepwatch to protect their business. Visit www.deepwatch.com to learn more.
Next Trend Realty LLC./wwwHar.com/Chester-Swanson/agent_cbswan
1 年Thanks for Sharing.
Sales Associate at American Airlines
1 年Best of luck