Mitiga

Shift-left approaches aren't just for prevention and posture management—training DevOps and developers to understand detection and response methodology, too, supports your organization's overall security goals 🙌 In this video, learn how "developer security champions" can be the bridge between developers and security teams, and how that translates to effectively managing threats and incidents in the cloud ⬇️ Want to learn more? Watch the full video on-demand: https://lnkd.in/g-g6vjh4

🚨 𝐈𝐧𝐬𝐢𝐝𝐞𝐫 𝐓𝐡𝐫𝐞𝐚𝐭 𝐀𝐥𝐞𝐫𝐭: SaaS platforms like Slack, SharePoint, and Salesforce make collaboration easier than ever. But they also make insider threats harder to detect. 📌 What happens when someone inside your company starts searching for sensitive files? 📌 Would your security team spot it in time? 📌 Can your tools differentiate between normal work and data theft? Rippling recently alleged that an insider searched for and accessed sensitive data repeatedly—leading to claims of corporate espionage. It’s a wake-up call for every security team. In our latest blog, we share: 🔎 Key behaviors that indicate insider threats ⚠️ Real-world tactics for detecting suspicious activity 💡 Code-based detection techniques you can use today Read the full research here: https://lnkd.in/gVicciev #InsiderThreat #CloudSecurity #ThreatDetection #CyberRisk

Austin Bollinger, Principal Incident Responder, explores how a threat actor could steal information from one of your users' browsers to gain further information across your entire tenant or organization. 💡 This example underscores the importance of securing OAuth flows and carefully managing the permissions granted to browser extensions. Learn more by visiting our blog: https://lnkd.in/gDkrn7et

Playing pranks on your SOC team this April Fool's Day? Here are our fun (but of course, harmless) ideas of how to prank them this year! 🙅 Label a USB drive "TOP SECRET - DO NOT PLUG IN" and leave it on their desk 📧 Send an email from the IT department that all SOC members must now submit incident reports in haiku format 📣 Have the CEO announce to the SOC that due to budget cuts, all workstations will be downgraded to Windows XP What other fun pranks can you think of? 😆 Let us know in the comments!

Top-rated RSA Conference speaker Ofer Maor is speaking in two sessions this year, so mark your calendars and keep reading for more info 👇 𝐂𝐥𝐨𝐮𝐝, 𝐈𝐝𝐞𝐧𝐭𝐢𝐭𝐲 & 𝐒𝐚𝐚𝐒 𝐅𝐨𝐫𝐞𝐧𝐬𝐢𝐜 𝐈𝐧𝐯𝐞𝐬𝐭𝐢𝐠𝐚𝐭𝐢𝐨𝐧 – 𝐍𝐨𝐭 𝐖𝐡𝐚𝐭 𝐘𝐨𝐮 𝐓𝐡𝐢𝐧𝐤! Date/Time: Tuesday, April 29th from 8:30-9:20 am PT Description: Forensic investigation conjures thoughts of disk cloning and memory analysis. But investigating cloud services, IdPs and SaaS requires a completely new set of tools, skills, and mindset! This talk will teach attendees how to do that, collecting artifacts from multi-cloud and SaaS, identifying attacks, and providing forensically sound evidence and records to support their conclusions. Add to your agenda 👉 https://lnkd.in/gGDUjV39 𝐈𝐭’𝐬 𝐆𝐞𝐭𝐭𝐢𝐧𝐠 𝐑𝐞𝐚𝐥 & 𝐇𝐢𝐭𝐭𝐢𝐧𝐠 𝐭𝐡𝐞 𝐅𝐚𝐧 2025: 𝐓𝐡𝐢𝐧𝐤 𝐘𝐨𝐮 𝐒𝐞𝐞 𝐌𝐞? 𝐍𝐨 𝐘𝐨𝐮 𝐃𝐨𝐧’𝐭! Date/Time: Wednesday, April 30th from 2:25-3:15 pm PT Description: Hackers are advancing cloud attacks beyond workloads into areas with minimal visibility, such as the cloud control plane, cloud services, and SaaS. Recent examples include the Snowflake campaign, AWS glacier attacks, and GitHub compromises, where SOC teams are often blind. This session will look at real world investigated incidents and what SOC teams can do today to detect and mitigate them! Add to your agenda 👉 https://lnkd.in/g28eXs4W

Whether you've been following Mitiga for some time, or we're new to your LinkedIn feed, we'd like to take this time to tell you more about who we are 👋 At Mitiga, we're the unfair advantage enabling SecOps teams to combat threat actors in the cloud stronger and faster than ever before 👊 We're the only AI-powered Cloud Detection and Response platform that empowers the SOC to: ✅ Reduce Risk ✅ Stop Attackers ✅ Save Money Learn more: https://lnkd.in/gjZFN_bj

Cloud log retention depends on the provider ☁️ For example, AWS and Slack have different policies, and even within providers themselves, retention can be defined differently depending on service (e.g. S3 buckets versus CloudTrail). If you had to estimate for your organization's cloud estate, taking into account your most-used cloud services and applications, how does your team configure log retention? Vote below! ⬇️

🔥 𝐇𝐨𝐭 𝐭𝐚𝐤𝐞: Traditional SIEM platforms don't have to cost you an arm and a leg just because you're migrating to the cloud. Instead, cloud security solutions that include 𝘣𝘰𝘵𝘩 a Cloud Security Data Lake and Cloud Detection and Response capabilities can enrich SIEMs and make them even more powerful for SOC teams 🙌 Think it's too good to be true? 😏 Swipe through the carousel below to learn 3 crucial ways CDR platforms built on top of a security data lake enhance SIEM solutions ⬇️ Learn more: https://lnkd.in/ghRZfePN #SOC #SIEM #ThreatDetection