Our Blog
Check back for weekly updates
Steps for External and Internal Threat Hunting in the Aftermath of SolarWinds
The holiday season is full of joy, anticipation, and the latest technology breach news. With this being 2020, the technology industry, not wanting to be outdone by forest fires, plagues, and murder hornets, came out with its own version of a ‘natural disaster’; an...
White Supremacist Movements Are Exploding
Has Your Company Assessed the Possible Risk to Its Brand and Leadership? Violent white supremacist movements have been undergoing a strong resurgence since 2013. Does your company have eyes on this emerging threat? If not, Nisos has the experience and proprietary...
Actioning Cyber Threat Intelligence for Cloud-based Enterprise
Today, many companies are primarily cloud-based with little on-premise infrastructure. These organizations often have minimal internal network traffic and may even have limited email usage. In these environments, the risk of developer misconfigurations and inadvertent...
How to Successfully Implement a Threat Intelligence Program
Threats continue to occur on a global scale. They are large, they are complex, and they are growing. This problem has led to widespread interest in tailoring intelligence programs that provide insight into business problems and generate actionable outcomes.For...
Weaponization for Disinformation
Continuing our series on the adversarial mindset, we focus on how actors weaponize narratives for disinformation operations. In a previous blog post, we wrote about the reconnaissance steps that disinformation actors take prior to launching their operations, including...
What is Coordinated Inauthentic Behavior?
Coordinated Inauthentic Behavior (CIB) is a common phrase heard in the news regarding disinformation, misinformation, and influence operations; but what exactly does it mean?First, let’s define our terms: inauthentic behavior, and coordinated. Inauthentic behavior in...
Weaponization for Cyber-Enabled Fraud
In our previous blog, we highlighted how fraudsters conduct reconnaissance for fraud activities. While banking malware, trojans, worms, and botnets such as Zeus Panda, Ramnit and Trickbot have typically been used to infect consumer PCs in order to collect personal...
Weaponizing Tools for Computer Network Operations
Continuing in our series on the adversarial mindset, we focus on weaponization for computer network operations. Following the reconnaissance phase and identifying a target, an actor needs to gain a foothold in a network before determining how to monetize the access or...
How Adversaries Conduct Reconnaissance for Disinformation Operations
Building on our series exploring the adversarial mindset, disinformation actors seek amplification of their content, regardless of whether their goal is financial, ideological, or political. Disinformation actors need venues to post their content that will be most...
An Introduction to Honeypots
In our latest blog series, we discuss how threat intelligence can be applied smarter for medium sized organizations with limited resources. We discuss ways to proactively detect threats beyond subscribing to information feeds that require a lot of resources to...
Using Selectors For Open Source Intelligence
A “selector” is not a generally defined term in enterprise security, but selectors are important for understanding open source intelligence and investigations in the digital realm. Building on our previous technical blog defining a selector, we will be diving deeper...
How Adversaries Conduct Reconnaissance for Fraud Operations
Building on our series on the adversarial mindset, fraudsters will identify a target based on the ease and speed with which they are able to monetize their fraudulent activities. Many of the reconnaissance steps involve a threat actor learning how a company conducts...
Making Threat Intelligence Useful for Medium-Sized Enterprises
Medium-sized enterprises that don’t have sophisticated security operations teams typically focus on the basic blocking and tackling of information security: policies around financial controls, incident response plans, data retention policies, disaster recovery around...
How Adversaries Conduct Reconnaissance For Computer Network Operations
The adversarial mindset is the core that allows us to provide a world-class intelligence capability tailored to the needs of business. Many people ask what it means to have the adversarial mindset and how that differentiates Nisos. While it’s a complicated answer...
Six Considerations for Building a Cyber Threat Intelligence Program
When evaluating cyber threat intelligence programs for enterprise, organizations should consider six critical topics before spending on data. It’s natural for an organization to start from one of two places: where they have already been beaten badly enough they need...
Stay up to the minute
Subscribe to our blog to get notified of updates in your inbox.