Pathfynder
  • Home
  • Cyber Solutions
    • Risk Assessments
    • Threat Hunting
    • Insider Threat
    • Offensive Security
    • vCISO
  • Our Company
    • The Team
    • Careers
  • Blog
  • Contact

The Guide

GOING PURPLE: BUILD A BETTER DEFENSE THROUGH CONSTRUCTIVE COLLABORATION

12/17/2020

0 Comments

 

​Justin Jackson - Director, Revenue Operations
​
Sometimes marketer. Aspiring analytics nerd. Donut lover.

Picture
Bottom Line Up Front:  Purple Team engagements - with their focus on collaboration and shared outcomes - are great options to build up the skills of blue team defenders.

Read More
0 Comments

​The Day I got Phished: An eMBARRASSINGLY TRUE CONFESSION FROM SOMEONE THAT KNOWS BETTER

9/18/2020

0 Comments

 
Justin Jackson - Director, Revenue Operations
​
Sometimes marketer. Aspiring analytics nerd. Donut lover.
Picture
JON BERKELEY VIA GETTY IMAGES
The Bottom Line Up Front: Phishing remains one of the top ways cyber adversaries evade your company's perimeter defenses, leading to over $1.7B in losses in the United States during 2019 alone.

​If even a well-trained executive can be duped, what does that mean for the rest of your company?

Read More
0 Comments

MATURING A FORTUNE 50 INSIDER THREAT PROGRAM

9/15/2020

0 Comments

 
Picture
Globally, over one-third of businesses are impacted by insider threats every year, with organizations experiencing a 47% increase in insider incidents since 2018.

Regardless of whether these incidents are malicious or accidental, the ease of access to critical information possessed by insiders and difficulty identifying, tracking, and quantifying their damage makes this a critical risk that organizations must address.
​
Pathfynder is at the forefront of establishing and maturing insider threat programs for global organizations. The following case study covers an insider threat engagement with a Fortune 50 company.

Read More
0 Comments

THREE HARD TRUTHS FOR THE WORK-FROM-HOME CYBERSECURITY EXPERIENCE

9/9/2020

0 Comments

 
Justin Jackson - Director, Revenue Operations
​
Sometimes marketer. Aspiring analytics nerd. Donut lover.
Work from Home Cyber Threat
The Bottom-Line Up Front:  While the work from home advantage is clear for some businesses, leaders need to understand how this new reality impacts their cybersecurity posture. With that in mind, there are a few best practices to consider that will have an immediate positive impact on your company's security.

Read More
0 Comments

BOLO: ACTIVE ADVERSARY PURCHASING LOOK-ALIKE DOMAINS TARGETING INDUSTRIAL MANUFACTURING, SHIPPING, AND LOGISTICS INDUSTRIES

9/4/2020

0 Comments

 
BE ON THE LOOKOUT – to our peers in the industrial manufacturing, shipping, and logistics industries, there is an active adversary purchasing look-alike domains to execute business email compromise against you.

Read More
0 Comments

Greek Traitors & Russian Hackers: A Vignette on Insider Threats

9/3/2020

0 Comments

 
Justin Jackson - Director, Revenue Operations
​
Sometimes marketer. Aspiring analytics nerd. Donut lover.
Picture
Credit BMartens https://en.wikipedia.org/wiki/File:Battle_of_Thermopylae.pdf
The Bottom-Line Up Front: The threat from insiders is often the least considered—but arguably the most dangerous—type of cyber threat companies face. Time and time again, however, we are reminded that ignoring this threat is a serious mistake. The question then becomes: what is your company doing to mitigate the threat from insiders?

Read More
0 Comments

Pathfynder's Bryan Clements co-authored a new CVE release: CVE-2020-12855, "NEProfile - Host Header Injection."

8/26/2020

0 Comments

 
Description:

A host header injection vulnerability has been discovered in SecZetta's NEProfile product. Authenticated remote adversaries can poison the host header resulting in the attacker controlling response 302 execution flow. The issue affects version 3.3.11 and has not been tested on other versions of the product.

Nice work, Bryan. More to follow!

https://seclists.org/fulldisclosure/2020/Aug/17
0 Comments

Intelmonkey is now pathfynder!

8/24/2020

0 Comments

 
We are excited to announce that IntelMonkey is now Pathfynder!

Pathfynder embodies our expanded capability set and dedication to bringing the best cyber solutions to our customers in these uncertain times. Defeating tomorrow's cyber threats requires conviction, agility, and innovation. We are here for you. Any time. Any place.
Picture
0 Comments

new mitre att&ck release with sub-techniques

7/24/2020

0 Comments

 
We've looked forward to this release since March and have incorporated these sub-techniques in our threat modeling process. We've found the increased technique fidelity and the ability to address more nuanced adversary behaviors to be really impactful.

From MITRE ATT&CK:

"We’re excited to announce the release of ATT&CK with sub-techniques! We released a beta preview of the content in March, and now (with some small updates and fixes) it has become the current version of ATT&CK. Our hope is that this sets up ATT&CK on a much more sustainable path for the years to come. You can find the new version of ATT&CK and what's changed on our website (https://lnkd.in/e_DrbMC).

We've also released a new blog post pulling together what's changed, why, and how to shift to this new version of ATT&CK."
0 Comments

pathfynder hires bryan clements as senior director, cyber operations

7/1/2020

0 Comments

 
We are excited to welcome Bryan Clements to the Pathfynder team as Senior Director, Cyber Operations.

Bryan is a highly respected cybersecurity professional with over 15 years helping Fortune 50 and Small and Medium Businesses(SMB) successfully navigate complex security challenges.

Bryan’s experience assessing and improving cyber readiness, designing and building security systems, and leading and maturing insider threat programs will both complement and expand our capability set.

And most importantly, Bryan shares Pathfynder’s commitment to service and passion for helping organizations defeat cyber adversaries.

Welcome to the team, Bryan!
0 Comments
<<Previous

    Archives

    December 2020
    September 2020
    August 2020
    July 2020
    May 2020
    April 2020

    Categories

    All
    Active Adversary
    BOLO
    Case Study
    Cyber Threat
    Emerging Threat
    Industrial Manufacturing
    Insider Threat
    Logistics
    Malware
    Offensive Cyber
    Penetration Tests
    Phishing
    Ransomware
    Risk Assessments
    Shipping
    Spoofing
    Threat Hunting
    Threat Intelligence
    Work From Home

    RSS Feed

Contact
Privacy Policy
Logo & Mark
EULA
Blog
Pathfynder 2020 | All Rights Reserved
  • Home
  • Cyber Solutions
    • Risk Assessments
    • Threat Hunting
    • Insider Threat
    • Offensive Security
    • vCISO
  • Our Company
    • The Team
    • Careers
  • Blog
  • Contact