Check out my latest blogpost on importing Windows event log files in Splunk. This can be useful for DFIR & Threat Hunting. #dfir #threathunting #splunk cloud-response.com/2019/07/import…

Check out these BETAs. Dumping SRUM to XLSX and want a GUI? github.com/MarkBaggett/sr… Dump SRUM, Spartan or any other forensics gem in a ESE database to CSVs? github.com/MarkBaggett/es… Forensics, network defender, incident responder and never heard of these? SANS FOR500 #dfir

Tesla's annual revenue: 2019: $24.3 billion (estimate) 2018: $21.5 billion 2017: $11.8 billion 2016: $7.0 billion 2015: $4.1 billion 2014: $3.2 billion 2013: $2.0 billion 2012: $413 million 2011: $204 million 2010: $117 million 2009: $112 million 2008: $15 million

We at PwC UK are looking forward to present "Threat Modelling with Tanium" at Tanium #CONVERGE19. We have some exciting things to share with you this year, hope to see you there! Join us on 19 November, 1PM EST tanium.com/converge2019/ Chris @fromCharCode Oliver Smith

Had a great time recording a segment for the PwC UK A-Z of Tech podcast with @HugoWarner1 Kirsten W and Louise. Subscribe at pwc.co.uk/issues/intelli… and watch out for December’s issue “J is for Jargon” #cyber

Some excellent work from the PwC UK threat intelligence here, a solid year of tracking very interesting crime and #APT groups 👊. Download the full report for more! pwc.co.uk/issues/cyber-s…

From tomorrow, we're offering 500 freshly cooked meals, each day FOR FREE for vulnerable in our community, available for pick up + delivery to those w/ limited mobility. With support from @pwc_uk & BaxterStorey. Get in touch to get involved. From 11.30am #GoodFoodDoingGood

1/ Over the last few days, we've put a lot of thought into what actions organisations can to take to mitigate the cyber security risks emerging from the COVID-19 outbreak. We've realised there are three key actions organisations can take now:

#Speaker #CONFidenceConf Sveva Vittoria Scenarelli and John Southworth will take you on a journey analysing the #Dtrack remote access #trojan, and discuss how the hunt for Dtrack led them to further discoveries on #Lazarus Group. More: confidence-conference.org/schedule.html

Over the last few months we've been posting about our research into #Wellmess with analysis on the malware, and the controller, this time around we've taken a look at the #Wellmail side of house. #threatintel pwc.co.uk/issues/cyber-s…

Human operated ransomware intrusions have been one of our most frequent types of incident response cases for the past 12 months, and a sustained focus for our threat intelligence team given the devastation they can cause. pwc.co.uk/issues/cyber-s… #ransomware

Sharing our BEC Guide with the world. Hope this helps incident responders all over the world combatting this huge problem. Feel free to share this further. #dfir #bec cc: Ronnie Tokazowski github.com/PwC-IR/Busines…

Always fascinating to look over the research the team does and see the most prolific #ThreatIntel trends we saw last year highlighted in our Cyber Threats 2020 report. Download our in-depth review of the latest tactics and techniques we've observed here: pwc.to/2ZPx7fo

Our #threatintel team has published their annual 'Year in Retrospect' report, consolidating key threat activity observed over the past year across our #dfir, Managed Cyber Defence, and threat research services. Grab a copy and a cuppa. #CyberSecurity pwc.co.uk/issues/cyber-s…

Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to HAFNIUM. microsoft.com/security/blog/…

After what feels like being hunkered down a bit for the past year to go by, we now have some cracking UK #dfir and #threatintel opportunities open, with more to come, and some international TI roles opening soon as well. Some brief info on the squad:

New article from Richard Ackroyd and I on our global forensic artifact collection/analysis platform, which leverages Tanium and GCP technologies - an integral component of our #ThreatHunting methodology. Take a look! #cyber #tanium #gcp pwc.co.uk/issues/cyber-s…

The moment he's dreamed about 🏆

We’re recruiting! Incident Response positions open at Manager and Senior Manager. Drop me a message if you want to work with some of the best talent in the UK. experiencedcareers.pwc.co.uk/job/14468415/i… experiencedcareers.pwc.co.uk/job/17777153/i…

📢New blog from Cado Security today 📢 Is Cloud Forensics just Log Analysis? Kind Of -> cadosecurity.com/is-cloud-foren… #dfir #cloudforensics