#incident-response — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #incident-response, aggregated by home.social.
-
Zeek: Introducing Zeek 8.2
https://zeek.org/2026/05/introducing-zeek-8-2/
Read on HackerWorkspace: https://hackerworkspace.com/article/zeek-introducing-zeek-8-2
-
NEW by me:
Many immigrants have enough anxiety these days without their lawyer leaking their files and having the files all wind up in the hands of criminals. Read about what happened with a NYC law firm in my new post.
No need to hack when it’s leaking: Dalbir Singh & Associates law firm edition:
#dataleak #immigration #incidentresponse #misconfiguration #KillSec #DSDLaw
-
How to Investigate with Windows Prefetch Files
-
Kazuar: Anatomy of a nation-state botnet | Microsoft Security Blog
https://www.microsoft.com/en-us/security/blog/2026/05/14/kazuar-anatomy-of-a-nation-state-botnet/
Read on HackerWorkspace: https://hackerworkspace.com/article/kazuar-anatomy-of-a-nation-state-botnet-microsoft-security-blog
-
NATO Locked Shields 2026: RL Joins Live-Fire Cyber Event | RL Blog
https://www.reversinglabs.com/blog/locked-shields-2026
Read on HackerWorkspace: https://hackerworkspace.com/article/nato-locked-shields-2026-rl-joins-live-fire-cyber-event-rl-blog
-
Mustang Panda Linked to FDMTP Backdoor in Asia-Pacific Espionage
https://www.infosecurity-magazine.com/news/mustang-panda-fdmtp-backdoor-apj/
Read on HackerWorkspace: https://hackerworkspace.com/article/mustang-panda-linked-to-fdmtp-backdoor-in-asia-pacific-espionage
-
Say what you want about internal corporate Copilot. Having to write several incident reports in one day, Copilot is doing the heavy lifting of editing the mess of text I am dumping into the report template.
Do I like what it has produced? No, it is not in my style of writing.
Will I make my deadlines? Yep
-
Critical cybersecurity incidents continued to grow during 2025, especially in the industrial and food sectors.
Recent reports show the most affected industries were:
• IT → 23%
• Government → 18%
• Industrial → 18%Protecting infrastructure today requires continuous visibility, rapid detection, and expert response capabilities.
#cybersecurity #infosec #industrialsecurity #otsecurity #soc #mdr #incidentresponse
https://www.relianoid.com/blog/critical-cybersecurity-incidents-in-the-industrial-sector/
-
RE: https://infosec.exchange/@amvinfe/116567370386921171
I realize my view on whether it is ever okay to pay #ransom in a #hackandleak situation is contentious. Great thanks to @amvinfe for asking me to articulate my views. #incidentresponse #mitigation #responsibility #ethics
-
The Augmented Analyst: How AI Is Changing the Speed of Security Operations
-
This affects so many companies..
-
Canvas Maker Instructure Reaches Agreement With Cybercriminals
https://www.infosecurity-magazine.com/news/canvas-cybercriminals-agreement/
Read on HackerWorkspace: https://hackerworkspace.com/article/canvas-maker-instructure-reaches-agreement-with-cybercriminals
-
Skoda-Shop gehackt: Das eigentliche Problem ist nicht die Schwachstelle – sondern die fehlende Nachvollziehbarkeit! Skoda muss einen Sicherheitsvorfall im eigenen Online-Shop einräumen: Über eine Schwachstelle in der eingesetzten Shop-Software konnten Unbefugte auf Kundendaten zugreifen. Betroffen sein könnten unter anderem Namen, Adressen, Kontaktdaten, Bestellinformationen und Zugangsdaten in gehashter Form. #CyberSecurity #IncidentResponse #Datenschutz #ITSecurity #Skoda
-
[DxBP] Part 1 - Technical Detection Engineering Best Practices
https://kqlquery.com/posts/dxbp-part1/
Read on HackerWorkspace: https://hackerworkspace.com/article/dxbp-part-1-technical-detection-engineering-best-practices
-
Hackers accessed BWH Hotels reservation system for months
Read on HackerWorkspace: https://hackerworkspace.com/article/hackers-accessed-bwh-hotels-reservation-system-for-months
-
Accelerating detection engineering using AI-assisted synthetic attack logs generation | Microsoft Security Blog
Read on HackerWorkspace: https://hackerworkspace.com/article/accelerating-detection-engineering-using-ai-assisted-synthetic-attack-logs-generation-microsoft-security-blog
-
OpenAI Launches ‘Daybreak’ to Help Build Secure By Design Software
https://www.infosecurity-magazine.com/news/openai-daybreak-secure-by-design/
Read on HackerWorkspace: https://hackerworkspace.com/article/openai-launches-daybreak-to-help-build-secure-by-design-software
-
🤖 Half your codebase was written by AI.
👤 The other half by someone who left two years ago.Guess who's on-call when it breaks.
New video on Rootly AI SRE - the partner that's got your back when prod goes down.
-
The two speeds of incident response:
* Waiting for Godot
* Everything, Everywhere All at Once -
A practical cybersecurity brief on reducing operational risk, strengthening controls, and improving executive decision-making.
Where would the deadly breach: a network nightmare that nearly t... break first in your environment?
CyberSecurity #IncidentResponse #InfoSec #Security
🎥 Watch Teaser: https://steelefortress.com/vacg0b
-
GitHub - Mihir-Choudhary/EventHawk: Windows EVTX log analysis for DFIR — fast parsing, ATT&CK mapping, IOC extraction, and Sentinel anomaly detection. Normal + Juggernaut Mode (Arrow/DuckDB) for 10M+ events.
-
Security teams are turning to AI to survive alert overload - Help Net Security
https://www.helpnetsecurity.com/2026/05/11/world-economic-forum-cybersecurity-ai-adoption-report/
Read on HackerWorkspace: https://hackerworkspace.com/article/security-teams-are-turning-to-ai-to-survive-alert-overload-help-net-security