Sqrrl Blog

Sep 28, 2015 4:20:00 PM

Taking the Backroad to a Secure Enterprise

Guest Blog by Richard Stiennon, Chief Research Analyst at IT-Harvest

This post originally appeared on the IT-Harvest blog.

It is often the case that rapidly changing technology allows laggards to leapfrog leaders. Rather than follow the same path as the trailblazers, those who come behind can take a shortcut. A country in South America bent on joining the modern world does not have to string phone lines across its mountains and jungles to achieve universal access to communications. It can build an LTE infrastructure, allowing its people to skip the fixed line stage and jump right to the latest smartphones and apps for Facebook and Instagram.

So too can an enterprise that is poorly defended get ahead of the race to security. The very best security infrastructures can be found at large financial institutions and defense contractors. Both have been battling targeted attacks for over a decade. They have purchased, deployed, and staffed every new technology brought out to combat every new threat: banks to counter cybercrime, the defense industrial base (DIB) to combat cyber espionage.

Read More

Topics: Cybersecurity, Cyber Hunting, Incident Response

Sep 24, 2015 9:00:00 AM

A Framework for Cyber Threat Hunting Part 3: The Value of Hunting TTPs

In the first two parts of our “Framework for Cyber Threat Hunting” series, we discussed the heirarchy of Indicators of Compromise, the most valuable of which are an attacker’s Tactics, Techniques, and Procedures (TTPs), and the benefits of using those indicators in a security feedback loop to build an Advanced Persistent Defense. This third and final part aims to provide a concrete example of how the discovery and mapping of TTPs contributes to the strength of an advanced persistent defense.

Read More

Topics: Breach Detection, Cyber Hunting, Incident Response, Threat Hunting

Sep 4, 2015 1:32:00 PM

Cyber Incident Matrix: Ashley Madison

Complexity Score: 4
Severity Score: 6
How did we get these numbers?

Incident Summary

  • What was breached: User Data from Avid Life Media websites, specifically targeting the Ashley Madison infidelity website

  • Delivery: Announced July 2015,

  • The Attackers: A hacking group known as "The Impact Team"

Read More

Topics: Data Breach, Cyber Incident Matrix

Sep 2, 2015 11:46:00 AM

A Look Inside Sqrrl's Company Culture

Sqrrl is located at 125 Cambridge Park Drive, a 470,000 square foot complex that hosts a number of innovative companies including Boston Scientific and Whole Foods. This month, an interview with Sqrrl CEO, Mark Terenzoni, and VP of Business Development, Ely Kahn, was featured in the monthly building newsletter. We would like to thank the author, Erin Tremblay, for her great article. Read it below!

Written by Erin Tremblay:

New to the Cambridge Park Dr. community, Sqrrl has called CPD home since this March. With an intriguing company name, CEO Mark Terenzoni gave me a glimpse inside Sqrrl’s corporate world.

Read More

Topics: Sqrrl

Sep 1, 2015 1:44:00 PM

Accumulo Summit Videos Now Available!

 

 
The 2nd annual Accumulo Summit provided an opportunity for attendees to get introduced to Apache Accumulo, sharpen their skillsets, and connect with the leading Apache Accumulo users and developers -- and now the videos are available! For anyone who was unable to attend or would like to watch a presentation they missed, videos of each talk have been posted to YouTube. As a refresher, talks included:

To all those who attended, we thank you. To those who didn’t, we look forward to seeing you next year!

Read More

Topics: Accumulo