In this blog post we analyzed tactics, techniques, and procedures used in SolarWinds Breach by a threat actor.

We analyzed tactics, techniques, and procedures utilized by threat actors of the FireEye’s stolen Red Team Tools. Attackers heavily used various defense evasion techniques.

H. Alper Memis, CEO and Co-founder of Picus Security, discusses the company’s Series B raise and how it is being used to take security control validation to the next level.

We shared our SIGMA, QRadar, Splunk, Carbon Black, ArcSight queries for detection, and also vendor-based prevention signatures for FireEye Red Team tools.

Vendor: Picus Security Inc.Price: $25,000 per assessment vectorContact: picussecurity.com What it does: Leverages continuous, metrics-based validation to harden security controls and provide mitiga...

The Picus Complete Security Control Validation Platform enables security teams to achieve the best possible protection from Microsoft Defender for Endpoint and Microsoft Sentinel

This blog post will take a deeper look and comment on the paper 'Red Team: Adversarial Attack Simulation Exercises (AASE) – Guidelines for the Financial Industry in Singapore'.

This link will take you to a page that’s not on LinkedIn

We used CB Insights' data to look at funding trends in cybersecurity

Part 1: Emotet Technical Analysis series. All techniques used by attackers are mapped to tactics and techniques in the MITRE ATT&CK Framework.

Picus Labs has updated the Threat Library for REvil (Sodinokibi) ransomware samples used in Kaseya VSA cloud-based MSP supply-chain attack.

Your Handbook to Utilise MITRE ATT&CK Framework! Download the report and learn; How to start MITRE ATT&CK by learning about the top 10 most used techniques, Red team exercises, Blue team exercises

In SOC ReLoad, thought leaders and security researchers from leading institutions discussed steps that can be taken to overcome the obstacles in building proactive SOC capabilities and preempting...

We analyzed tactics, techniques, and procedures and tools used by HAFNIUM to target (and breach) Microsoft Exchange servers. | Breach and Attack Simulation

In this blog, the CVE-2021-44228 Apache Log4j vulnerability, Log4j exploit payload examples, simulation and remediation of Log4j attacks are explained.

Now that 50-60% of your employees are WFH, you’re no longer in the safety of your office network. This signals that the approach to security should now change. By Leveraging red and blue team...

We provide the tactics, techniques, and procedures (TTPs) used by Ranzy Locker Ransomware, which has been responsible for high-profile breaches.

Picus Webinars presents Masquerading, the fourth most commonly used technique used by adversaries in 2019, according to 10 Critical MITRE ATT&CK Techniques Research. Maximilian Heinemeyer, Director...

Elevate cloud security with Picus' Cloud Security Validation platform, offering proactive risk identification and attack simulation in AWS, Azure, and GCP.

At Picus Labs, we create attack scenarios in a structured format and run these scenarios to test security controls’ effectiveness against these attacks.

The recent spike in Emotet activity shows that it remains an active threat

The COVID-19 virus has spread rapidly: governments take a series of critical measures and impose restrictions and the companies are suspending various field activities and supporting remote working....

For a live demonstration of Picus, please fill out the following request demo form. A representative will contact you to schedule an appointment.