GUEST OPINION by Asjad Athick, Principal Security Specialist at Elastic Whenever a major cybersecurity incident occurs, there are two things everyone asks. Could it have been prevented, and what did the victim of the attack do to minimise the damage? The left side of that equation, prevention, is critical and is…

The Australian Cyber Security Centre (ACSC) recently published an advisory outlining tactics, techniques, and procedures (TTPs) used against multiple Australian businesses in a recent campaign by a state-based actor. The campaign — dubbed ‘copy-paste compromises’ because of its heavy use of open source proof of concept exploits — was first…

To achieve unified observability, we need to gather all of the logs, metrics, and application traces from an environment. Storing them in a single datastore drastically increases our visibility, allowing us to monitor other distributed environments as well. In this blog, we will walk through one way to set up…

Data is at the core of modern technology. A successful data program means access to intelligence driven cyber security, data governance based risk management, business relevant insights, resilient operations, just in time supply chain management… the list goes on. Here are the main ideas I went back to work with…

I do apologise for all the buzzwords you’re going to read in this article. But then again, what’s the point of working in this industry if you can’t use buzzwords! Gartner held their premier Security and Risk Management Summit in late August and without doubt saw great attendance from all…