Tag Archives: IR

4 Important Steps to Take When Creating an Incident Response Plan

By Erik Leach, CISSP, SCF Imagine coming home and finding your house broken into and some of your belongings missing.  As you totter from room to room, you would probably feel anger, frustrated, disturbed and a little overwhelmed.  At a vulnerable moment such as that, it probably would not be the best time to engage […]

How to Quickly Respond to Computer Intrusions – HALOCK

By Todd Hacke The moment you realize you are experiencing a network-based breach, you may not know what to do. Minute one, hour one, day one, what should a technical team do to respond to a breach while it’s still in play? While having a full incident response plan, a trained response team, and well-placed […]

ENDPOINT DETECTION AND RESPONSE: FIRE FOR EFFECT

The modern digital landscape is a battleground rife with adversaries ready and willing to go to great lengths to steal your data. Clever independent attackers and state-sponsored actors alike are deploying increasingly effective versions of cyber-attacks intended to intrude, infect, steal, evade, disrupt and destroy everything they touch. To defend themselves, many businesses are investing […]

As Part of Your Incident Response Plan, Make Sure There are Needles in Your Haystack

Incident Responders take a lot of pride in finding that ‘Needle in the Haystack’ when conducting data breach investigations. The thrill of forensics lies in finding the tiniest clue that unravels the story of how a breach occurred and what exactly was compromised as a result. But the reality is that during forensic investigations, there […]