Strength in Numbers: Partnering with Facebook’s ThreatExchange for Better (Automated) Defense

By: October 29, 2015

Today we unveiled that Bit9 + Carbon Black has joined the Facebook ThreatExchange community. This is a fast-growing group for sharing information about current and emerging threats and it is built on nice APIs, data protocols, and the typical West… Read More

With CISA, Our Government Should Be the First to Share

By: October 28, 2015

While cyber defense, security and safety should be a top national priority, the time the federal government continues to spend on CISA demonstrates that’s not the case. Threat intelligence is already being shared bountifully. It is the processing of that… Read More

Using Carbon Black with Volatility for Detecting Memory Attacks

By: October 27, 2015

Memory attacks are a new buzzword in #InfoSec. The question is: “How can we best detect and respond to them? Volatility, a free, open-source memory analysis tool, allows you to investigate memory dumps from your machines to determine whether or not… Read More

History Has an Interesting Way of Repeating Itself

By: October 23, 2015

Philosopher George Santayana was famous for his thoughts on progress. You may not initially recognize his name but you will certainly remember one of his famous quotes: “Those who cannot remember the past are condemned to repeat it.” A brief… Read More

Hunting the White Rabbit: Detecting Metasploit Meterpreter Using Carbon Black

By: October 21, 2015

Brief Overview: Carbon Black can detect Metasploit Meterpreter using the following watchlist: childproc_name:”rundll32.exe” AND digsig_result:”Unsigned” AND path:c:\windows\* This article is similar to my previous post, which I wrote while attending DEFCON23. In that post I described how one could use… Read More

As OS X Grows in the Enterprise Market, Apple’s Approach to Security Focuses on Trust and Integrity

By: October 19, 2015

Recently, Apple released the next major version of OS X, now 14 and a half years, nearly to the day, since OS X was first released. The platform has come a long way, not just in features, usability and performance,… Read More