Security News

Incident Response as "Hand-to-Hand Combat" (Schneier on Security)
2017-04-07 13:06

NSA Deputy Director Richard Ledgett described a 2014 Russian cyber attack against the U.S. State Department as "hand-to-hand" combat: "It was hand-to-hand combat," said NSA Deputy Director Richard...

Security Orchestration and Incident Response (Schneier on Security)
2017-03-29 11:16

Last month at the RSA Conference, I saw a lot of companies selling security incident response automation. Their promise was to replace people with computers ­-- sometimes with the addition of...

Security orchestration and automation: Closing the gap in incident response (Help Net Security)
2016-10-07 12:45

Companies in North America are poised to increase their reliance on security orchestration and automation for incident response (IR), according to Enterprise Strategy Group (ESG). The research...

Incident response survival guide (Help Net Security)
2016-09-27 13:30

All organizations are impacted by a security breach at some point. As the joke goes in the security industry, businesses fall into two categories: those that have been breached and those that...

Building a Home Network Configured to Collect Artifacts for Supporting Network Forensic Incident Response (SANS Reading Room)
2016-09-21 20:05

Incident Handling Preparation: Learning Normal with the Kansa PowerShell Incident Response Framework (SANS Reading Room)
2016-08-22 15:51

Incident response challenge: How to get out of Firefighter Mode (Help Net Security)
2016-08-16 13:15

Organizations tend to have the mindset that their IT and security teams should play the role of First Responders on the scene of a security incident. They expect their IT and Security departments...

New Presidential Directive on Incident Response (Schneier on Security)
2016-08-02 11:40

Last week, President Obama issued a policy directive (PPD-41) on cyber-incident response coordination. The FBI is in charge, which is no surprise. Actually, there's not much surprising in the...

New Presidential Policy Directive Details U.S. Cyber Incident Response (SecurityWeek)
2016-07-27 17:01

Bank boffins drop slick incident response tool for Mandiant mobs (The Register)
2016-07-15 07:45