Time, money and skills are often in short supply among IT security teams. Fortunately, SOC.OS was recently able to offer one of the UK’s most renowned museums an innovative way to overcome many of these challenges. By enhancing visibility into incoming threats,… Read more
The UK’s higher education sector is an increasingly popular target for cyber-criminals. Whether they’re focused on ransomware extortion, stealing the personal and financial information of staff and students, or going after cutting-edge research, there’s plenty to keep university IT teams… Read more
Why “mediocrity” is your friend (for now at least) SOC.OS is a security alert correlation, enrichment and prioritisation tool that was born in an internal incubator program at BAE Systems Applied Intelligence. In June 2020, the SOC.OS team and product… Read more
After a great deal of time spent on video calls to friends and family describing the rollercoaster year the SOC.OS team has just had, I often found myself answering questions such as; Is a cybersecurity alert like a mobile notification?… Read more
Lateral movement is often mentioned in write-ups of multi-stage cyber-attacks. But what is it? Otherwise known as MITRE ATT&CK®’s Tactic TA0008, lateral movement is used by adversaries to navigate their way through a victim’s network. Typically, they’ll exploit vulnerabilities and… Read more
I joined SOC.OS in August of 2020, approximately a month and a half after their spin out from BAE Systems Applied Intelligence. At SOC.OS, the team are dedicated to fostering an environment of constant improvement – that of the product… Read more
In the ongoing fight against cyber-threats, alert mapping is a useful tool for security analysts. It allows organisations to build an “alert library” via which they can better understand and contextualise threats going forward. As such, it’s fundamental to what… Read more
A knowledge gap is the discrepancy between what is known and what should be known. What is known is: The widely held preconception that the MITRE ATT&CK® framework is reserved only for large, extremely sophisticated and cyber mature organisations. At… Read more