Welcome to the October edition of the ExtraHop TL;DR! This is your place to get the highlights on what we're talking about this month. You can also watch our video broadcasts on the fourth Friday of every month on our LinkedIn page.
Webinar: Extract Value From Your SOAR Faster with NDR
On November 8, listen in as experts from IDC and ExtraHop share how organizations can gain additional value from their security orchestration automation and response (SOAR) platforms with network data.
SOAR platforms offer the promise of automating SOC tasks and streamlining complex workflows. Learn about the most important SOAR use cases, and how network intelligence can play a role in quickly extracting value.
Reveal(x) 360 Threat Defense for Google Cloud
Cloud security teams are outnumbered by adversaries and developers, and the traditional approach of prevent and protect can't keep up with the current realities of unmanaged assets and advanced threats. Improve your situational awareness, gain actionable intelligence, and quickly zero in on malicious activity like lateral movement, command and control communication, and data exfiltration.
SANS Ransomware Prevention Special Report
Ransomware is a fast-growing threat affecting organizations of all sizes and industries. Quick spreading and highly interruptive, ransomware damage ranges from profoundly impacting a business's finances to threatening proper healthcare by disabling access to critical data needed for medical systems and interrupting operations. This SANS paper covers common infection vectors, how ransomware spreads, and provides prevention and detection techniques.
Customer Success: Asante Health
Learn how this Oregon-based healthcare provider deployed Reveal(x) as the final piece of their security orchestration automation response (SOAR) architecture.
Threat of the Month: Vice Society
Vice Society is an intrusion, exfiltration, and extortion hacking group that first appeared in the summer of 2021. These actors have deployed versions of Hello Kitty/Five Hands Zeppelin ransomware. They've also been known to exploit the PrintNightmare vulnerability, and most recently, have been targeting the US education sector.
From the ExtraHop Blog
Take a look at some of our recent stories
What is XDR?
Discover what extended detection and response (XDR) is, how it works, and how you can evaluate a strategic XDR solution for your organization.
What is Cloud Security Posture Management (CSPM)?
Learn how CSPMs function, how it compares to NDR, and discover how two solutions that are often viewed as competition can also work well together.
In Other News
Read, watch, or listen to some interesting news from around the internet.
The Verge: London Police Arrest, Charge Teen Hacking Suspect but won't Confirm GTA 6, Uber Links
While the police haven't identified the suspect, many personal details mirror information uncovered during arrests this spring around members of the Lapsus$ hacking group.
SC Media: Ransomware Attack Against LAUSD Claimed by Vice Society Operation
The confirmation comes after the FBI, CISA, and MS-IAC warned about the increasing prevalence of Vice Society ransomware attacks against the U.S. education sector.