RavenMail Security’s Post

Did you know that a simple phone call could lead to a major network compromise? 📞 When a remote user fell victim to a vishing attack, it allowed a malicious actor to gain access to a customer network. But thanks to our swift detection and response, we prevented any data loss and secured the network. Discover the full story and learn how we tackled the threat in our Inside the SOC blog 👇 🔗 https://lnkd.in/gbMRkvsM

In today’s threat landscape, while we can’t always stop vishing at its source, Darktrace focuses on preventing attackers from achieving their end goal. Here’s how: 1. A vishing attacker spoofed an internal IT line and tricked a remote user into approving an MFA request. 2. The attacker used static IP addresses to proxy through the VPN, making their actions appear legitimate. 3. Darktrace detected reconnaissance activities like LDAP and port scanning, alongside failed NTLM authentication attempts. 🛡️ How Darktrace Stopped the Attack on the remote user: Autonomous Response blocked all outgoing traffic and SMB connections. Enforced a pattern of life and contained activity, halting lateral movement. Learn more about how Darktrace protects against these threats:

Time is of the essence when tackiling adversaries, you need a SOC that has the agility to react with one source of truth. ⌚ It's time to transform your SOC to outpace today's adversaries. ⚡ Discover how the next generation of #SIEM will help you stop breaches faster than ever. 💻 Register for the definitive SOC transformation event of the year: https://lnkd.in/eKHM-Xrg

Can you believe 80% of the breaches we see leverage identity as a key component? Because of this we want to help you learn how to protect your users. Join us for a webinar on 8/21 so you can see how Duo is working hard to stop identity-based attacks. How do we do it differently? It starts with offering broad identity coverage for really unique use cases, with intelligent and actionable visibility into all identities, all while having the easiest experience for both end users and IT administrators. Register now as you don't want to miss it! https://lnkd.in/eJ9nj8nK

Join Cortex by Palo Alto Networks on Feb 15 for a 30-minute demo of #Cortex XDR and see how it can help your SOC ensure the security of your organization while staying within budget. Don't miss this opportunity to learn how Cortex XDR can help you avoid breaches! #SecuredByPANW

Join Cortex by Palo Alto Networks on Feb 15 for a 30-minute demo of #Cortex XDR and see how it can help your SOC ensure the security of your organization while staying within budget. Don't miss this opportunity to learn how Cortex XDR can help you avoid breaches! #SecuredByPANW

Join Cortex by Palo Alto Networks on Feb 15 for a 30-minute demo of #Cortex XDR and see how it can help your SOC ensure the security of your organization while staying within budget. Don't miss this opportunity to learn how Cortex XDR can help you avoid breaches! #SecuredByPANW

Join Cortex by Palo Alto Networks on Feb 15 for a 30-minute demo of #Cortex XDR and see how it can help your SOC ensure the security of your organization while staying within budget. Don't miss this opportunity to learn how Cortex XDR can help you avoid breaches! #SecuredByPANW

Join Cortex by Palo Alto Networks on Feb 15 for a 30-minute demo of #Cortex XDR and see how it can help your SOC ensure the security of your organization while staying within budget. Don't miss this opportunity to learn how Cortex XDR can help you avoid breaches! #SecuredByPANW

Join Cortex by Palo Alto Networks on Feb 15 for a 30-minute demo of #Cortex XDR and see how it can help your SOC ensure the security of your organization while staying within budget. Don't miss this opportunity to learn how Cortex XDR can help you avoid breaches! #SecuredByPANW