SOC Team Structure
For many organisations, cybersecurity is a priority for their in-house IT team and security operations teams still function as part of IT, whereas others are separated into their organisation.
For many organisations, cybersecurity is a priority for their in-house IT team and security operations teams still function as part of IT, whereas others are separated into their organisation.
Like all organisations, Sapphire Utility Solutions (SUS) is a target for cybercriminals. This is only exasperated by its rapid growth.
Whilst having extensive security experience within the team, SUS wanted to enhance its cybersecurity capabilities and provide the best resources for its team to take advantage of, so it decided to outsource its cybersecurity via Sapphire’s Managed Security service.
Sapphire’s SOC Team have been tracking a recent Crypto Mining campaign targeting Linux systems, utilising a proof-of-concept (PoC) hack tool hosted on GitHub known as ‘CHAOS’.
A Financial Services and Technology organisation takes a robust approach to secure its data, infrastructure, assets, and people, with stringent information security policies and procedures and a comprehensive security architecture comprising best-of-breed technical solutions.
Client data is sensitive information, and for a company to handle it, regulations have to be in place to protect the data from malicious intent. This is where GDPR comes in to ensure data handlers…
Vulnerabilities in U.S. cybersecurity were exposed when, according to sources, the Darkside Colonial Thursday attack paralyzed operations in the largest pipeline for refined oil products in the United States. The urgency to have a stronger…
On January 24th 2022, the NCSC (National Cyber Security Centre) and IASME implemented an updated set of requirements for Cyber Essentials. This update is the most significant overhaul of the scheme’s technical controls since it launched in…
In 2021, AWS S3 accounted for roughly 60% of breaches.
Like most data breaches, the AWS bucket incident resulted from an incorrectly configured bucket which exposed 36GB of data to the public. The information leaked included mortgage and customer demographics.
What is Log Management? Log management refers to real-time alerting, collecting, storing, putting together, and analysing data from differing programs and applications. The data is referred to as log data. Log data is a computer-generated…
With the rapid changes in how organisations work driven by external factors such as COVID-19 and rapid demands placed on IT teams, the potential for vulnerabilities to occur has increased. This has raised the associated risk of becoming a victim of high-impact cyber-attacks.
Ransomware attacks are traditionally seen as being shared via phishing campaigns against specific targets to carry out maximum impact.
Therefore, attacks use several ways to distribute malicious software, such as drive-by downloads, USBs, and other portable devices.
Several high-profile organisations, including Cisco Talos, Microsoft, and Uber, have been breached by threat actors who have successfully utilised this technique. Whilst MFA plays a significant part in strengthening an organisation’s cybersecurity posture, it is not a ‘silver bullet’.
Ransomware remains one of the highest priority challenges for organisations of all sizes and across all sectors in 2022.
“Ransomware is the fastest-growing cybercrime for a reason,” says Steve Morgan, founder at Cybersecurity Ventures and editor-in-chief at Cybercrime Magazine. “It’s the proverbial get-rich-quick scheme in the minds of hackers.”
In November 2021, we published a blog post about the virtues of ISO27001 certification, ‘ISO27001 Certification: Now is the Time to Consider the Benefits’. Now with the publication of the ISO27002 controls, the changes are a great step forward for many organisations, and the reasons are outlined below…
Is Your Security Policy Configured Correctly? Wouldn’t it be great if there was an in-built feature that checks your settings are aligned with security in mind? Your cyber security policy is not wide open to…
Email: support@sapphire.net
Registered Office: The Cube, Barrack Road, Newcastle upon Tyne, NE4 6DB
Phone: +448455827001