Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Traditional Security Can't Stop LOTL Attacks. Exabeam UEBA Destroys Them.

Attackers are becoming more sophisticated and stealthier. Their methods are more advanced. Of these advanced methods, living-off-the-land (LOTL) attacks are the sneakiest and most effective. By using legitimate tools and processes already in your environment, malicious actors can get what they want without being seen. But with the Exabeam New-Scale Security Operations Platform and our industry leading user and entity behavior analytics (UEBA), security teams can stop them.

Breach and Attack Simulation: A Complete Guide

Today, cybersecurity isn’t just about protecting data but about protecting operations, reputation, and trust. Unfortunately, many organizations continue to operate under the false assumption that their security posture is strong because they’ve checked off compliance boxes—only to be blindsided when a breach occurs.

The Secret to Your Artifactory: Inside The Attacker Kill-Chain

Artifactory token leaks are not the most common, but they pose significant risks, exposing sensitive assets and enabling supply chain attacks. This article explores the dangers of leaked tokens and proposes mitigation strategies, including token scoping and implementing least privilege policies.

How leveraging Address Resolution Protocol ensures seamless networking

Let’s start with the fundamentals: What is Address Resolution Protocol (ARP)? ARP is a vital networking protocol that ensures effective communication between devices on a local-area network (LAN). Its primary function is to map IP addresses to MAC addresses, allowing devices to recognize and communicate with each other within the network. ARP bridges the gap between the logical layer (IP addresses) and the physical layer (MAC addresses).

How SMB Misconfigurations Can Lead to Full Network Takeover: A Red Team Case Study

Server Message Block (SMB) is a ubiquitous protocol used for file sharing, remote access, and resource management across enterprise networks. While critical for business operations, its misconfigurations can expose vulnerabilities to attackers. In this blog post, we’ll dive into a real-world red team operation where a simple yet effective PowerShell-based tool led us from SMB enumeration to full network takeover.

Top 11 cyberattacks that impacted 2024

2024 is behind us, but the cybersecurity lessons it left behind are still highly relevant. Data breaches remain a persistent threat to large enterprises and government agencies, as the data they store is prized by organizations and a prized target for cybercriminals. Attacks have economic consequences and serious reputational and legal repercussions, putting business stability at risk.

The Role of Cybersecurity in Ensuring Business Continuity in 2025

In today's digital age, cybersecurity is no longer just a technical concern; it's a business-critical priority. With cyber threats evolving rapidly, businesses must adopt robust strategies to protect their operations and ensure continuity. From ransomware attacks to insider threats, the risks are multifaceted and require proactive measures. As someone deeply invested in the cybersecurity space, I've seen firsthand how businesses can thrive when they prioritize security.

Operation Phantom Circuit: North Korea's Global Data Exfiltration Campaign

In December 2024, a routine software update concealed a global threat. Attackers from the Lazarus Group, based in North Korea, infiltrated trusted development tools, compromising hundreds of victims worldwide. This sophisticated campaign, code-named “Phantom Circuit,” targeted cryptocurrency and technology developers, employing advanced obfuscation techniques through proxy servers in Hasan, Russia.