AutoFocus: Your Answer to Actionable Threat Intelligence

AutoFocus: Your Answer to Actionable Threat Intelligence

Threat intelligence involves learning about new attacks, adversaries, campaigns, and malware families through distinct pieces of information often referred to as indicators of compromise, or IOCs. The more we make relevant information available to network defenders, the better the odds are that they will find answers to their questions. One key consideration for leveraging threat [...]

COBIT: The Road Ahead

COBIT: The Road Ahead

1996 had its share of significant events. The first flip phone, the Motorola StarTAC, went on sale. The Czech Republic applied for European Union membership. Australia defeated Sri Lanka 2-0 to win cricket's World Series Cup. The first version of the Java programming language was released. The massive Internet collaboration "24 Hours in Cyberspace" took [...]

Audit: A Key Success Factor

Audit:  A Key Success Factor

Why is it that some companies succeed and others fail? There is a general consensus certain things are common among successful companies. We call these things key success factors. Key success factors are essential attributes that are critical to an organization reaching its business goals. There is no agreed-upon list of success factors because they [...]

Which Approach Is Better When Choosing a CASB? API or Proxy? How About Both?

Which Approach Is Better When Choosing a CASB? API or Proxy? How About Both?

There have been recent articles and blog posts arguing that the API approach is better than the proxy approach when it comes to selecting a cloud access security broker (CASB). The argument doesn’t really make sense at all. Both surely have their advantages and disadvantages, but each covers unique use cases and while you could [...]

VB Dropper and Shellcode for Hancitor Reveal New Techniques Behind Uptick

VB Dropper and Shellcode for Hancitor Reveal New Techniques Behind Uptick

The Hancitor downloader has been relatively quiet since a major campaign back in June 2016. But over the past week, while performing research using Palo Alto Networks AutoFocus, we noticed a large uptick in the delivery of the Hancitor malware family as they shifted away from H1N1 to distribute Pony and Vawtrak executables. In parallel, [...]