July 2020

Lower the Price Tag of a Data Breach with Threat Intelligence

Detecting and containing a data breach takes the better part of a year, approximately 280 days, for the average organization, according to IBM’s 15th annual Cost of a Data Breach Report, Unfortunately, the longer it takes to identify a breach, the bigger the price tag of the overall breach lifecycle. This year’s report found that more than half (52%) of breaches are the work of malicious actors. Of those, 13% of breaches are reportedly caused by nation state attackers.The findings also revealed that more attackers are using compromised credentials and leveraging...

Fox 26 Houston: U.S. Accuses Chinese Consulate of Spying

Press

Our CEO answers questions about the recent closing of the Chinese Consulate in Houston....

VC Investment in Cybersecurity Dips & Shifts with COVID-19

Press

VC Investment in Cybersecurity Dips & Shifts with COVID-19 While the pandemic has infected funding for cybersecurity startups, it also has emboldened some startups with innovative tools that secure the wave of at-home work....

SecDevOps Engineer

Careers

The SecDevOps Engineer works in Prevailion’s Intelligence team. In this role, you will work collaboratively with internal teams to deploy, manage, and maintain systems and infrastructure key to the Intelligence team’s success and growth and that of Prevailion....

What’s keeping Trump’s Twitter from being hacked? A White House digital fortress — and perhaps some special help from Twitter

Press

Twitter attack underscores a fresh threat facing companies and the public

Press

The day after scammers commandeered various high-profile Twitter accounts to conduct a bitcoin scam, cybersecurity professionals and the company itself tried to make sense of exactly what happened. ...

Evidence of Compromise – No Fun for CISOs

Press

Meet Ellen. As CISO for a regional bank, she spends her time spreading security awareness, coaching her managers, and supporting the selection of security tools. Ellen doesn’t know that her bank has been compromised, or that a nation-state has been funneling data out of her network with impunity. After three years of pleasant ignorance, Ellen happily retires from the bank and moves to Florida where she enjoys sailing....

Prevailion’s New Hacker Intelligence Service Provides Full Transparency on Undisclosed Corporate Breaches for Compliance and Auditing Professionals

Press

Corporate network breaches are happening all the time, but finding out about them can be difficult for anyone outside of the company. This lack of transparency poses a significant problem for many interested parties, but it’s particularly challenging for the compliance industry....

More evil: A deep look at Evilnum and its toolset

Press

ESET has analyzed the operations of Evilnum, the APT group behind the Evilnum malware previously seen in attacks against financial technology companies. While said malware has been seen in the wild since at least 2018 and documented previously, little has been published about the group behind it and how it operates....

How Auditors Can Make Compliance Programs More Effective

Context, Uncategorized

When conducting an audit of your cybersecurity plans, it’s important to reassess risk and evaluate whether established policies and procedures are both effective and actionable. To aid in cyber compliance, CSO Online said the updated compliance guidelines issued by the Department of Justice, “has particular relevance to the cybersecurity practices of organizations when it comes to, for example, data breach and other security-related lawsuits.” Essentially, the document outlines how to assess, “whether a particular compliance program works in practice.” Toward that end, the guidelines pose three questions that every compliance...

Lower the Price Tag of a Data Breach with Threat Intelligence

Fox 26 Houston: U.S. Accuses Chinese Consulate of Spying

VC Investment in Cybersecurity Dips & Shifts with COVID-19

SecDevOps Engineer

What’s keeping Trump’s Twitter from being hacked? A White House digital fortress — and perhaps some special help from Twitter

Twitter attack underscores a fresh threat facing companies and the public

Evidence of Compromise – No Fun for CISOs

Prevailion’s New Hacker Intelligence Service Provides Full Transparency on Undisclosed Corporate Breaches for Compliance and Auditing Professionals

More evil: A deep look at Evilnum and its toolset

How Auditors Can Make Compliance Programs More Effective

Contact Us

Recent Insights

Staring at the Sun: Thoughts on UNC2452, SUNBURST, SolarWinds and Road Ahead

U.S. Hackers have likely “gone to ground”

‘Most pristine espionage effort’ in modern history right under the US’s nose

TD Ameritrade – SolarWinds – Karim Hijazi’s Cybersecurity notes

About Prevailion