OffSec’s Post

The CrowdStrike 2024 Threat Hunting Report details the escalating sophistication of cyber threats over the past year, with adversaries increasingly adopting techniques for stealth and speed to evade detection. The report underscores the importance of cross-domain threat hunting, as attackers target identity, endpoint, and cloud domains to infiltrate organizations. eCrime activity was particularly prominent, with 86% of interactive intrusions attributed to such actors, and the healthcare sector experienced a notable 75% increase in eCrime-related intrusions. The technology industry remained the top target, with a 60% rise in intrusions, while the consulting and professional services sector saw a significant 141% increase in targeted intrusion activity. The report provides several case studies, including SCATTERED SPIDER's abuse of a cloud management agent and FAMOUS CHOLLIMA's insider threat operations, to illustrate the diverse tactics used by adversaries. CrowdStrike's OverWatch team and Falcon platform continue to innovate with AI-driven solutions to detect and disrupt threats, emphasizing the need for a unified security approach to combat the evolving threat landscape. #SecurityReport #e-crime #AISecurity

The CrowdStrike 2024 threat hunting report highlights the trends the crowdstrike overwatch team has observed over the past 12 months. Share and follow Threat Intelligence Lab!

If you've watched my video series on Bug Bounty Hunting for IDORs and Access Controls, this video expands a bit on the topics in Part 1 by giving you a list of 4 questions you can ask yourself to find IDOR attack vectors that are worth your time! I hope it helps! https://lnkd.in/gZeycJte

Another great blog from Brady with some thoughts on threat hunting!

Big game hunting dedicated leak sites are a significant #eCrime threat spanning regions and industries. Is your organization prepared? Learn more in the CrowdStrike 2024 Global Threat Report: https://lnkd.in/gbZcEwqD

Gain expertise in threat hunting through a live session led by Google experts, covering the entire process and strategic use of Google Threat Intelligence.

Good Evening all, In continuation to my last week post on (Threat Intel vs Threat Hunting), prepared and attached herewith the detailed Threat Intelligence file for this week. Will post detailed Threat Hunting content for Next Week. #ThreatIntelligence #CTI #CyberThreatintelligence #IncidentResponse #infosec

Days of 104 #365daysofinfosec Yara room from TryHackMe Learn the applications and language that is Yara for everything threat intelligence, forensics, and threat hunting! #detect #blueteam #forensic #threatintelligence #threathunting

Just wrapped up Threat Hunting Session on LetsDefend! I utilized Sysmon to track and analyze suspicious activity from process creation, Network connections and process execution. Every detail counts when it comes to uncovering hidden threats #ThreatHunting #Sysmon #LetsDefend

Big game hunting dedicated leak sites are a significant #eCrime threat spanning regions and industries. Is your organization prepared? Learn more in the CrowdStrike 2024 Global Threat Report: https://lnkd.in/ea2GAcDg