Last night my co-authors and I turned in the final chapter's first draft for our book, Practical Detection Engineering: A hands-on guide to planning, developing, and validating threat detections. Still got a few rounds of technical reviews and copy edits but definitely a big milestone for us.
When performing competitor analysis we found that despite the numerous amazing blog posts from industry experts, there wasn't a complete book focused solely on detection engineering, so hopefully we can fill that gap for the field! The book is scheduled to release in early August and is available for pre-order on Amazon now: https://www.amazon.com/Practical-Detection-Engineering-Confidently-detections/dp/1801076715
If you have a Packt subscription, it'll be in the eBook library too.
Thanks in advance for anyone who decides to invest in our work and check it out!
When organizations do not have the requisite skills on board to protect themselves from attacks, their constituents—be they customers, students, or patients—are harmed. The nature of the harm could be financial, but not always. The patient whose care is deferred due to nonfunctional medical systems is experiencing more than just financial impacts. Poor cybersecurity makes the world that much harder to live in.
On the other side, we know that these organizations struggle to find people with the appropriate security skills. Some of that is poor hiring practices, but some of that is availability of candidates at the right place and time. The solution? Let a thousand resumes bloom.
The more people who have access to #InfoSec / #CyberSecurity skills, the more opportunities people have to improve their own lives through this discipline. And in turn, the lives of the people they protect are improved.
It's not about computers. It was never about computers.
We're in this to help people on both sides of the equation. That's why we believe this knowledge should not come with financial burdens.
Chatted with Tab at Caliber recently about forensics, my books, and the risks to organizations created by the inevitable mountain of dormant credentials left behind after mass layoffs.
Also, I wore a collared shirt, so you know it’s serious.
Bukannya bayar tebusan malah ngerahin buzzer untuk menjaga nama baik bank tersbut, Grup ransomware LockBit telah meretas bank BSI dalam 2 bulan terakhir..
Hm. Bitbucket rotating their SSH host keys is interesting for all kinds of reasons, but maybe primarily because GitHub just rotated theirs a couple of months ago.