Tidal Cyber

Ever tried to report the state of your security program to a CEO, CFO, or Board, and end up presenting a dashboard full of numbers and details? It's very likely when doing so, the numbers didn't "translate" between the business questions and the security specifics, and you may not have achieved the desired outcome you'd hoped for in order to show the state of your security, how you may be protected, or even what resources you might need to be better protected. We have a solution. New in Tidal Cyber Enterprise Edition, we now provide a Coverage Map Rollup feature that gives you a way to talk about your security program in a way that resonates for your non-technical leadership while also remaining true to your team and credible for your day-to-day activities. Some examples of what you can do include: ✨ Quantifying your cybersecurity risk with the Tidal Confidence Score ✨Leverage a specific Coverage Map Rollup confidence score for all coverage maps - not simply a specific one ✨Tying the tactical to the strategic with Coverage Map weighting, supported by real world examples from a cloud-first company, a large healthcare provider, and a financial organization with a strong internal CTI team Our new blog from Senior Director of Product James Juran goes into so much more detail about the new Coverage Map Rollup feature and Enterprise Edition as a whole. You can read all of the details in the link below and then email tryenterprise@tidalcyber.com to get a real live human who can help you schedule time to learn more. https://okt.to/ehbQtC #ThreatInformedDefense #CyberSecurity #ExposureManagement #CTEM

#RSAC2025 is right around the corner! Tidal Cyber will be at Booth N-5485 in the Moscone North Expo where you come by and find out how to stop guessing about the #defensivecoverage you’re actually getting out of your current security stack. With Tidal Cyber your teams can quickly and confidently answer: ❓What techniques your tools are capable of defending against ❓Whether those capabilities are even configured correctly ❓How effective are those capabilities against relevant threats Be sure to also join us for a Happy Hour with drinks, hors d'oeuvres, and great networking on April 30th at The Woodbury with Intel 471 and Replica Cyber! Register below and we look forward to seeing you! https://okt.to/p7IumB

A global insurance leader was struggling with a major gap in its ability to operationalize #threatintelligence when a recently hired junior threat analyst was tasked with establishing their #ThreatInformedDefense program. It quickly became overwhelming for the analyst to prioritize threats due to: ❌ Fragmented and Disjointed Threat Intelligence ❌ Unmanageable Threat Volumes ❌ Lack of Threat Context ❌ No Clear Prioritization Our new Case Study details how Tidal Cyber was able to come in and quickly and easily provide this analyst with a centralized, structured approach to threat research, profiling, and prioritization, allowing them to confidently handle three times the workload than before and accelerating their #CTI program development by two years. Read the full Case Study: https://okt.to/86kWS5

❗Tidal Cyber Threat Intel Content ❗ A campaign object was added following an alleged breach involving the theft of 6 million database records, including encrypted passwords & key files, from federated SSO login servers. The threat actor attempted to extort alleged victims and sought help decrypting stolen passwords, raising concerns the credentials would be used in a wide range of potential follow-on attacks. https://okt.to/fegA1E

📣 The Dreamit Cyber Founders Summit at #RSAC2025 is set! 📣  Join us on Tuesday, April 29, 2025 for an exclusive event showcasing the next wave of #cybersecurity innovation. Hosted just steps from the Moscone Center, this is your chance to meet top early-stage cyber startups and hear from leading voices in the industry on security automation. 📍 Location: The Box SF (near Moscone Center) 🗓 Date: Tuesday, April 29, 2025 🎟️ Registration Recommended: https://lu.ma/89h2p9y9 ⏰ Agenda Highlights: 🔹 8:30 AM–4:00 PM: Cyber Startup Expo (all day) 🎙 10:00–10:30 AM: Live Podcast — David Cass (GSR) + Kyle McNulty (Secure Ventures Podcast Host) Expert Panels: 🛡 11:30 AM–12:15 PM: Cloud Security Automation • Adam Russell (Oracle SaaS) • Nico Popp (Tenable) • Pathik Patel (Informatica) ⚙️ 1:00–1:45 PM: Security Operations & Compliance Automation • Alok O. (Coalition, Inc.) • Sandip Wadje (BNP Paribas) • Rob Gil (Okta) Space is limited for the #LivePodcast and #ExpertPanels. Seating will be available on a first-come, first-served basis. #CyberSecurity #Innovation #DreamitVentures #CyberFoundersSummit #SecurityAutomation AccuKnox, Bricklayer AI, Daxa, Inc, Lineaje Inc, Nirmata, Opscura, Swif, TestifySec, Tidal Cyber, UpSight Security Inc., Dreamit Ventures

Yesterday, Access Venture Partners, J.P. Morgan, and Cooley LLP co-hosted a "Cybersecurity Leaders and Founders" panel and dinner in Denver. We had a great turnout of 30+ cybersecurity leaders and builders from around the country. A huge thank you to our outstanding panelists for sharing their expertise: Jai Dargan, CEO of Hydden Rick Gordon, CEO of Tidal Cyber Joseph Najar, CISO at Woodward, Inc. Michael Lyborg, CISO at Swimlane Eric Shu, cybersecurity investor at Access Venture Partners I'm grateful to all the CISOs, security leaders, and founders who joined us for an evening of meaningful conversation and connections. Shout out to Cassandra Wanek, David Griffith, Malte Witt, Alexa Orrange, Frank Mendicino, Jonathan Knisley, and Mike Platt for their collaboration in making this event a success. Looking forward to continuing these valuable discussions in the cybersecurity community!

Headed to #RSAC2025 in San Francisco? Meet with the Tidal Cyber team to learn how your security teams can stop guessing about their coverage and confidently know what their current tools defend against. Swing by our booth in the Moscone North Expo in Booth N-5485 or schedule time with Rick Gordon for a 1:1 discussion about how Tidal Cyber can empower your teams to finally answer the basic question at the core of security and know how to: ⚠️ Prioritize TTPs that matter most 🔎 Identify important coverage gaps 👁️🗨️ Recommend the most impactful actions 👾 Adapt automatically as adversaries and products evolve

❗Tidal Cyber Threat Intel Content Updates❗ The “Red Canary Top Techniques” curated Threat Profile, which is available by default for all Tidal Cyber customers, was updated with the top 10 ATT&CK Techniques featured in Red Canary's new update to its annual #ThreatDetection Report. https://okt.to/5hvW4y

We’ve been ramping up our TTP intelligence around remote access trojans, offensive security tools, and C2 frameworks as the landscape for these threats continues to evolve Community Edition collection of #RAT malware: https://lnkd.in/efKfeWYz OST & #C2 frameworks: https://lnkd.in/eMqRvG9c Cross-reference adversary Software by type, availability, and various other Tags & metadata: https://lnkd.in/ensKwB62 Recorded Future’s latest Malicious Infrastructure Report highlighted the immense breadth of remote access tools being abused across the landscape, with most regions seeing considerable variation in the most-observed families and even types of threats (e.g. RATs vs OSTs): https://lnkd.in/encvrtAn Meanwhile, new reports suggest public-private disruption efforts have caused a dramatic drop in use of unauthorized copies of the popular #CobaltStrike tool: https://lnkd.in/eQ-FkEcV But we know actors aren’t deterred for long, raising the need for awareness & vigilance around likely alternatives A review of Tidal Cyber knowledge base data shows that in many cases, free, open-source remote access tools possess a wide range of capabilities, at times rivaling those of commercial alternatives (the data are probably skewed to some degree by the availability of public reporting on the latter’s use in real-world attacks). Definitely keep an eye on actor-crafted post-exploitation tools, but remember that freely available options continue to be extremely attractive for #ransomware precursor activity, cybercriminals, and espionage threats alike

We are excited that our very own Kamala Espig will be speaking at the Women in CyberSecurity (WiCyS) 2025 next week! Don’t miss out as she presents “Designing Cybersecurity Tools for Everyone: Inclusive UX for Enhanced Security” As the cybersecurity tool stack grows and is used by more and more people, it is essential for those tools to apply human-centered UX designs to make them not only intuitive to use but accessible and inclusive for all users. This session will highlight how inclusive strategies reduce user error and improves tool adoption while increasing the overall security of organizations. https://okt.to/reJ4Pd #womenincybersecurity #WiCyS2025 #WiCyS