Snatch Ransomware: CISA Threat Advisory AA23-263A is now available for testing in Validato for all existing customers. The Cybersecurity and Infrastructure Security Agency (CISA) has issued a cyber threat advisory relating to Snatch Ransomware, an emerging Ransomware threat actor that first emerged in 2021 and has so far mainly targeted organizations in the Defense, Agriculture,
Many organizations struggle to gauge the true effectiveness of their security controls. Security measures frequently falter without detection and breaches still have significant consequences. Cybersecurity teams require a proactive and straightforward method to consistently monitor the actual performance of their security programs. To address this issue, adopting a Threat-Informed Defense strategy becomes crucial. Through ongoing
On May 16th 2023, the US Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) issued a joint advisory (Advisory AA23-136A) on the emergence of a new Ransomware group, calling themselves BianLian (after the infamous Chinese theatrical costume dances). BianLian Ransomware has been active in a variety of industry sectors in
We are excited to announce our upcoming webinar on "Using MITRE ATT&CK to Simulate Ransomware Techniques". MITRE ATT&CK has become an indispensable tool for offensive security and cyber resilience testing. Join Validato founder, Ronan Lavelle to learn how to leverage it as the foundation for your offensive security testing program. In this webinar we
Introduction Security Information and Event Management (SIEM) platforms are essential tools for detecting and responding to security threats. These systems can analyse and correlate data from various sources to identify potential threats in real-time. However, SIEM systems can become less effective when attackers use advanced or new techniques to evade detection and if they are
Red Canary 2023 Global Top Threats Available to Test in Validato Validato is happy to announce that it has added the Red Canary Top Threats, as published in the Red Canary 2023 Threat Detection Report, to the Validato platform. This allows Validato customers to instantly test and validate their security control effectiveness and detection capabilities
We are delighted to announce that we will be exhibiting at CyberUK in Belfast on the 19th and 20th of April 2023. If you are planning to attend, please stop by the Validato booth and say hello! More information on the event and how to register, visit: https://www.cyberuk.uk/
The US CISA (Cybersecurity and Infrastructure Security Agency), an agency of the United States Department of Homeland Security that is responsible for strengthening cybersecurity and infrastructure protection, issued an advisory alert recently that urges US firms to make use of Security Control Validation tools to regularly verify the effectiveness of security controls. In a Ransomware
Simulating MITRE ATT&CK techniques using Breach & Attack Simulation (BAS) Simulating MITRE ATT&CK techniques using Breach and Attack Simulation (BAS) is becoming a powerful tool for cyber security professionals to test and improve cyber defences. By replicating the tactics, techniques, and procedures (TTPs) used by real-world cyber adversaries, BAS tools can help companies to identify
Will Breach and Attack Simulation (BAS) replace manual penetration testing? That is the question that many CISOs and security professionals are looking to understand in 2023. Breach and Attack Simulation is a relatively new niche part of the cyber security tools market, but one that is growing rapidly. Frost & Sullivan Research estimates that the
