Vigilance In Action: Monitoring Typosquatting Domains

In today’s digital landscape, cybercriminals are constantly devising new and innovative ways to infiltrate and compromise corporate systems. One such tactic is called typosquatting: the registration of domains that closely resemble a real organization in order to trick users into

SOC Automation: More Secure For Less Cost

Your SOC is on the front line of defending your organization from cyber attacks and they are drowning in a wave of thousands of alerts every single day. This is a serious problem: Inducing high stress and dissatisfaction for analysts

Challenges Of DFIR In Distroless And Other Container Environments

Containerization has changed the way organizations develop and deploy applications. However, the same benefits that make containers attractive, their ephemeral and layered nature, also present unique challenges for Digital Forensics and Incident Response (DFIR) teams. Traditional DFIR Techniques Are Less

The Differences Between Full Disk And Triage Acquisition

In digital forensics, data acquisition is a key first step in the investigation process. For acquiring data from either physical or virtual machines, there are two high-level approaches: full disk acquisition and triage acquisition. Each has its advantages and disadvantages,

Aligning Forensic Investigations To The MITRE ATT&CK Framework

In this blog we’ll explore how the Cado Security platform leverages the MITRE ATT&CK Framework to enhance forensic investigations. By combining ATT&CK’s comprehensive knowledge with Cado’s powerful investigation capabilities, security teams gain deeper insights into attacker behaviour. What is the

Cado Security Releases H2 2023 Cloud Threat Findings Report

Cado Security Labs, Cado’s internal threat research function, today released its H2 2023 Cloud Threat Findings Report to help security teams secure against cloud-focused threat actors. Cado Security believe that safeguarding both large enterprises and small businesses alike requires a

Unpacking The SEC’s Cybersecurity Disclosure For Incident Response Teams

The Securities and Exchange Commission (SEC) has introduced new rules mandating public companies to report cybersecurity breaches. This highlights the growing importance of cyber security outside of security and IT teams, requiring c-level leadership to be able to quickly understand the impact