You might be interested in …

[SecurityWeek] Insurer CNA Starts Notifying Customers of Ransomware Attack

All posts, Security Week

Commercial insurer CNA has started notifying customers that threat actors did have access to some personal data during a ransomware attack in March. read more Source: Read More (SecurityWeek RSS Feed)

Read More

Daily NCSC-FI news followup 2021-12-22

CISA – Mitigating Log4Shell and Other Log4j-Related Vulnerabilities www.cisa.gov/uscert/ncas/alerts/aa21-356a This joint Cybersecurity Advisory expands on the previously published guidance by detailing steps that vendors and organizations with IT and/or cloud assets should take to reduce the risk posed by these vulnerabilities. Identifying assets affected by Log4Shell and other Log4j-related vulnerabilities, upgrading Log4j assets and affected […]

Read More

[SANS ISC] Shipping to Elasticsearch Microsoft DNS Logs, (Sat, Sep 11th)

All posts, Sans-ISC

This parser takes the logs from a Windows 2012R2 and/or 2019 server (C:DNSLogswindns.log) and parses them into usable metatada which can be monitored and queried via an ELK dashboard. The logs have been mapped using DNS ECS field meta here [1]. → First step is to load the Microsoft DNS templates [3][4] via Kibana Dev […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.