Insights

Insights & Analysis from the Prevailion Tailored Intelligence Team

Lower the Price Tag of a Data Breach with Threat Intelligence
Detecting and containing a data breach takes the better part of a year, approximately 280 days, for the average organization, according to IBM’s 15th annual Cost of a Data Breach Report, Unfortunately, the longer it ta...
How Auditors Can Make Compliance Programs More Effective
When conducting an audit of your cybersecurity plans, it’s important to reassess risk and evaluate whether established policies and procedures are both effective and actionable. To aid in cyber compliance, CSO Online s...
Tip of the Spear: Evidence of Breach and Breach Intelligence
Introduction For quite some time we at Prevailion have been speaking publicly to the nature of the differences between Prevailion and other vendors in the threat intelligence market, and for good reason. There are two ke...
Broken Security Promises and the Big Threat from Smaller Partners
When two companies are directly connected to each other, they need to believe that the other is doing all it can to shore up its defenses. What happens, though, when the relationship between two companies is distinctivel...
Human Fallibility: A Threat that Flows Through Your Entire Downline
Earlier this year Dark Reading published a six part series, “Cybersecurity and the Human Element: We’re All Fallible,” in which the authors examined common mistakes of end users as well as the potential repercussio...
What’s Missing in Third-Party Risk Assessments
Assessments are important. You’d be hard pressed to find any cybersecurity professional who would argue they aren’t needed, but the problem with third-party risk assessments is that they are far from comprehensive. U...
Ransomware Gangs Continue to Shame Victims
Everyone has something to hide. The beauty of that truth for hackers is that even if they don’t know their target’s dirty little secrets, they know that no one wants their secrets exposed. The mere threat of being pu...
An Apple A Day Won’t Keep Malware Away
When researchers at Independent Security Evaluators published its 2016 report, Hacking Hospitals, the idea that vulnerabilities in medical devices could result in patient harm seemed like a serving of FUD (fear, uncertai...
How Effective Are Your Security Investments?
According to the annual ESG survey, 60% of companies said they were targeted with a ransomware attack in 2019. Not surprisingly, those organizations are looking to augment their cybersecurity tools and processes. Defense...
Visibility is Key to Securing Election Infrastructure
While many feel that they are living in Groundhog Day, the days and weeks do continue to pass us by, bringing the 2020 Presidential election closer with still no clear path for securing the election process. Recognizing ...
The Q1 2020 Apex Report
How did a group of criminals come to be responsible for such a costly enterprise? Threat actors are distributed, and they don’t form one cohesive group, but the holes they've punched in organizations and governments ...
An Unfair Advantage: Empowering the Cybersecurity Executive in Uncertain Times
With nation-state grade cyber warfare becoming the norm, CISOs need to expand their toolbox. A next gen solution might be the answer....
Compromise Intelligence: The Realization of a Decades-Old Promise
We can now move from the realm of the indicator of compromise or attack to Evidence of Compromise (EOC) resulting in real, actionable Compromise Intelligence....
Cyber Risk Heightens for US and French Hospitals
A disturbing trend has emerged in the hospitals subsector of our global compromise intelligence visibility, showing hospitals in the US and France with compromises that are rapidly spreading....
Marriott Attacked via Third-Party Vector, Exposing Info on 5.2 Million Customers
Marriott International, Inc. is the latest victim in a string of cyber breaches targeting hotel chains, and Evidence of Compromise within Prevailion captured the key moments the organization veered off course and ultimat...
Third-Party Cyber Defense: A New Level of Control & Visibility by Tracking the Adversary
Many of today’s businesses are beholden to a fundamental weakness—they are blind to the scope of their true perimeter. As businesses grow larger, their vast third-party vulnerabilities unfurl themselves, exposing the...
Prevailion CEO: Cyberattacks on Healthcare Won’t be Tolerated
As if the world needed another example, a ransomware group has proven there is no honor among thieves. The cybercriminal group Maze attacked the network of Hammersmith Medicines Research, a London-based medical res...
Map of TA505 Activity Shows Global Foothold After Necurs Botnet Goes Dark
Just shy of a week after Microsoft squeezed cyber criminals out of the prolific Necurs botnet infrastructure, threat actors like TA505 still maintain a foothold on networks throughout the world. Findings from Prevailion&...
The Curious Case of the Criminal Curriculum Vitae
The Tailored Intelligence Team at Prevailion has detected a new campaign—at least a facet of which is currently active—dubbed The Curious Case of the Criminal Curriculum Vitae....

Insights

Lower the Price Tag of a Data Breach with Threat Intelligence

How Auditors Can Make Compliance Programs More Effective

Tip of the Spear: Evidence of Breach and Breach Intelligence

Broken Security Promises and the Big Threat from Smaller Partners

Human Fallibility: A Threat that Flows Through Your Entire Downline

What’s Missing in Third-Party Risk Assessments

Ransomware Gangs Continue to Shame Victims

An Apple A Day Won’t Keep Malware Away

How Effective Are Your Security Investments?

Visibility is Key to Securing Election Infrastructure

The Q1 2020 Apex Report

An Unfair Advantage: Empowering the Cybersecurity Executive in Uncertain Times

Compromise Intelligence: The Realization of a Decades-Old Promise

Cyber Risk Heightens for US and French Hospitals

Marriott Attacked via Third-Party Vector, Exposing Info on 5.2 Million Customers

Third-Party Cyber Defense: A New Level of Control & Visibility by Tracking the Adversary

Prevailion CEO: Cyberattacks on Healthcare Won’t be Tolerated

Map of TA505 Activity Shows Global Foothold After Necurs Botnet Goes Dark

The Curious Case of the Criminal Curriculum Vitae

Contact Us

Recent Insights

Yahoo Finance: Microsoft is asking ‘for some serious scrutiny’ as it confirms talks to buy TikTok’s U.S. operations :Cybersecurity Expert

Lower the Price Tag of a Data Breach with Threat Intelligence

Fox 26 Houston: U.S. Accuses Chinese Consulate of Spying

VC Investment in Cybersecurity Dips & Shifts with COVID-19

About Prevailion