May | In the Golden Hour

Welcome to the May Edition of The Watch, featuring cyber intel from Deepwatch Labs, information security news, industry insights, and upcoming Deepwatch events. Hit the subscribe button to stay in the know!

📰  IN THIS ISSUE:

1. Deepwatch Announces Strategic Partnership with CrowdStrike
2. The Golden Hour in Healthcare Cybersecurity
3. Curated Cyber Threat Intelligence
4. Insights: Empowering the SOC Analyst
5. Driving Cyber Resilience in Healthcare
6. Register For Our Healthcare Security Webinar

We’re excited to announce our strategic partnership expansion with CrowdStrike ! 

“Customers are experiencing challenges due to the hundreds of legacy point tools and providers complicating their security stack and associated talent challenges to engineer and leverage all those tools. 

Our expanded strategic partnership with CrowdStrike enables us to leverage the full capability of the AI-powered Falcon platform, so we can meet customers where they are and help them with their journey toward modernizing their security operations and delivering the measured cyber outcomes for improved cyber resilience.” - Curt Aubley , COO & CPO of Deepwatch

More on this here.

🩺 Enabling Security First Responders: The Golden Hour in Healthcare Cybersecurity

Written by Neal Humphrey , VP of Market Strategy

The concept of the “golden hour” serves as a powerful reminder that rapid intervention is critical in cybersecurity. Attacks are becoming more common, costly, and complex. Often, the speed of response to a damaging cyber incident is key to reducing the damage. Letting this hour slip away has serious consequences for your security program and the patients your program serves.

Check out the full article on enabling cybersecurity first responders in the Golden Hour of healthcare cybersecurity here.

💻 Deepwatch Threat Intelligence

Deepwatch provides curated cybersecurity threat intelligence to keep your organization and SOC ahead of the latest security threats and zero-day vulnerabilities. Below are a few top cyber threats & insights from the past month.

🚨 WarzoneRAT is Back, Ransomware Has a New Agenda, XZ Backdoor Delivered by Trusted Source, and the Latest from Data Leak Sites

• WarzoneRAT Campaign Discovered Following FBI Takedown
• Agenda Ransomware Spreads to vCenters and ESXi through Specialized PowerShell Script

Read more on this here.

🚨 CoralRaider Gets Social, VenomRAT Deployed by ScrubCrypt, and Nearly 50 New Data Leak Victims

• User Data and Social Media Accounts Focus of New Threat Actor CoralRaider
• Malware-Initiated Vulnerability Scanning Utilized More and More By Adversaries
• VenomRAT Deployed by ScrubCrypt Along with Various Plugins

Read more on this here.

🚨 Rhadamanthys Infostealer, Credit Card Skimmer in Fake Meta Pixel Tracker, and Operation Midnight Eclipse

• TA547 Shifts Technique and Arsenal, Now Employing LNK Files and Rhadamanthys Infostealer
• Cybercriminals Compromise eCommerce Sites to Deploy Credit Card Skimmer in Fake Facebook Pixel Tracker Script
• CVE-2024-3400 Exploitation Activity Disclosed

Read more on this here.

🚨 OpenMetadata Vulnerabilities Mine Crypto, Spoofed IP Scanning Websites Target IT Teams, and DuneQuixote Campaign Includes Spanish Poetry to Deliver CR4T Backdoor

• Adversaries Exploit OpenMetadata Vulnerabilities for Cryptomining
• Popular IP Scanning Websites Spoofed to Target IT Teams, Delivering Backdoors
• Malware Campaign Deploys New CR4T Backdoor

Read more on this here.

➡️ Subscribe to Deepwatch Labs to stay up-to-date on the latest cyber threat intelligence, advisories, and recommendations.

💡 From the SOC: Empowering the SOC Analyst

Look beyond where buzzwords like automation and artificial intelligence, and learn how we empower our trusty SOC analysts in this interview with Technical Learning Experience Coordinator, Megan Whited .

👉  Driving Cyber Resilience in Healthcare

Healthcare organizations face an ever-expanding threat landscape and often struggle with limited budgets to acquire the staff, skills, and advanced technology they need to prevent costly data breaches and disruptions to patient care.

🩺 Check out these resources for more on ensuring cyber resilience in your healthcare organization.

🎙 ICYMI… Artificial Intelligence & Machine Learning in Cybersecurity

🗓 UPCOMING EVENTS...

🎥 Webinar | The Golden Hour in Healthcare Cybersecurity

Join Deepwatch experts as they discuss strategies and best practices #healthcare organizations can implement during this critical time, including:

• Planning and Building Cyber Resilience: Review proactive measures and strategies for building your SecOps cyber resilience.
• Understanding the Golden Hour:  Explore the significance of this time in relation to your response.
• Zero to Retainer: Learn about the importance of having zero to retainer capabilities in place, ensuring swift and effective response to incidents.
• Best Practices and Case Studies: Hear real-world stories and takeaways from the “war room” where our team has helped healthcare organizations successfully navigate the golden hour.

🩺 Register Today.

💼 Find Your Career With Deepwatch!

Our unique, fully remote work environment is developed with employee needs in mind, giving you the flexibility and benefits to make your career what you want. Explore current opportunities and learn how it feels to be part of a team of professionals who are passionate about driving positive change in the cybersecurity industry. 

View all open positions on our website here.

About Deepwatch

Deepwatch® is the leading managed security platform for the cyber resilient enterprise. The Deepwatch Managed Security Platform and security experts provide enterprises with 24/7/365 cyber resilience, rapid detections, high fidelity alerts, reduced false positives, and automated actions. We operate as an extension of cybersecurity teams by delivering exceptional security expertise, visibility across your attack surface, precision response to threats, and a compelling return on your security investments. The Deepwatch Managed Security Platform is trusted by many of the world’s leading brands to improve their security posture, cyber resilience, and peace of mind. Learn more at www.deepwatch.com.

Follow Deepwatch on LinkedIn, YouTube, and X.