Stamus Networks Blog

We believe that sharing information is necessary to improve global security. The purpose of this blog is to share our experiences, perspectives and experiments.

Subscribe to our Blog

Blog /
Showing 25 results
of 25 items.
Reset All

Category

Recent Posts

Detecting Fake CrowdStrike Domains Communications using Stamus Security Platform (SSP)

Detecting Fake CrowdStrike Domains using Stamus Security Platform

Jul 22, 2024 Stamus Networks Team
Network Detection and Response, Endpoint Detection, Network Security Monitoring, Stamus Security Platform, Threat intelligence

The recent global outage caused by an update to CrowdStrike Falcon, CrowdStrike's endpoint...

Read More
The Hidden Claws of APT 35: Charming Kitten by Dallon Robinette

The Hidden Claws of APT 35: Charming Kitten

May 09, 2024 Dallon Robinette
Stamus Labs, Threat intelligence

Don’t let the disarming name fool you.Charming Kitten, also known as APT 35, Newscaster Team, Ajax...

Read More
Behind the Curtain: Understanding Cozy Bear (APT29)

Behind the Curtain: Understanding Cozy Bear (APT29)

Nov 07, 2023 Stamus Networks Team
Stamus Labs, Threat intelligence

Cozy Bear — also known as APT29, CozyCar, CozyDuke, and others — is a familiar name to security...

Read More
Open NRD: Newly Registered Domain Threat Intel Feeds for Suricata by Peter Manev

Introducing Open NRD: Newly Registered Domain Threat Intel Feeds for Suricata

Oct 17, 2023 Peter Manev
SELKS, Network Detection and Response, Suricata, Stamus Security Platform, Threat intelligence, Stamus News

This article describes the details of the new Open NRD threat intelligence feeds provided by Stamus...

Read More
Behind the Curtain: Understanding Fancy Bear (APT 28)

Behind the Curtain: Understanding Fancy Bear (APT 28)

Sep 28, 2023 Stamus Networks Team
Stamus Labs, Threat intelligence

Operating since 2008, the shadowy figure of Fancy Bear has emerged as a formidable force in the...

Read More
Threat Hunting for Unknown Actors & Threats using NRD and Sightings

Threat Hunting for Unknown Actors & Threats using NRD and Sightings

Aug 03, 2023 Peter Manev
Threat Hunting, Stamus Security Platform, Threat intelligence

This week’s guided threat hunting blog focuses on hunting for high-entropy NRD (newly registered...

Read More
Incorporating Newley-Registered Domains into Stamus Security Platform Workflow by Peter Manev

Incorporating Newly Registered Domains (Open NRD) into Stamus Security Platform Workflow

Aug 01, 2023 Peter Manev
Network Detection and Response, Threat Hunting, Stamus Security Platform, Threat intelligence

Every day, new Internet domains are registered through the Domain Name System (DNS) as a natural...

Read More
Using MISP Shared Intelligence with SELKS by Alexander Nedelchev

Using MISP Shared Intelligence with SELKS

Mar 21, 2023 Alexander Nedelchev
SELKS, Open Source, Suricata, Stamus Labs, Threat intelligence

A couple of weeks ago, we covered how Stamus Security Platform (SSP) users can harness the power of...

Read More
Using MISP Shared Threat Intelligence in Stamus Security Platform

Using MISP Shared Intelligence in Stamus Security Platform

Mar 09, 2023 Alexander Nedelchev
Open Source, Network Detection and Response, Stamus Security Platform, Stamus Labs, Threat intelligence

Stamus Security Platform (SSP) users can now integrate the Malware Information Sharing Platform...

Read More
Stop the leak! Detecting ChatGPT used as a channel for data exfiltration by Peter Manev

Stop the leak! Detecting ChatGPT used as a channel for data exfiltration

Feb 28, 2023 Peter Manev
Network Detection and Response, Stamus Security Platform, Threat intelligence

In a recent conversation, one of our customers shared their concerns about the use of ChatGPT in...

Read More
An Introduction to Cyber Threat Intelligence by Stamus Networks Team

An Introduction to Cyber Threat Intelligence

Feb 09, 2023 Stamus Networks Team
Stamus Labs, Threat intelligence

Because cybersecurity teams face numerous threats from bad actors that are continually devising new...

Read More
Harness the Power of Shared Threat Intelligence with MISP by Alexander Nedelchev

Harness the Power of Shared Threat Intelligence with MISP

Feb 03, 2023 Alexander Nedelchev
Open Source, Network Detection and Response, IDS-IPS, Threat intelligence

When it comes to cyber threats, we understand that a threat to one organization can quickly become...

Read More
NEW! Open Ruleset for Detecting Lateral Movement with Suricata

NEW! Open Ruleset for Detecting Lateral Movement in Windows Environments with Suricata

Nov 10, 2022 Peter Manev
Open Source, Suricata, Stamus Labs, Threat intelligence

Today, we’re announcing a new open-source contribution from Stamus Networks - a Suricata ruleset...

Read More
Threats! What Threats? Penetration Tests and Stamus Security Platform by Mark Durrett

Threats! What Threats? Penetration Tests and Stamus Security Platform

Sep 22, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

This week in our threat detection blog we are mixing things up and discussing an important  Stamus...

Read More
Threats! What Threats? Combatting Remote Access Trojans with Stamus Security Platform

Threats! What Threats? Combatting Remote Access Trojans with Stamus Security Platform

Sep 12, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

This week’s threat detection blog dives deeper into a common type of malware, remote access trojans...

Read More
Threats! What Threats? Combatting Crypto Mining and Stamus Security Platform

Threats! What Threats? Combatting Crypto Mining and Stamus Security Platform

Sep 01, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

In this week’s threat detection blog, we will be reviewing a financially-motivated threat that is...

Read More
Uncovering Shadow IT with Stamus Security Platform

Threats! What Threats? Uncovering Shadow IT with Stamus Security Platform

Aug 25, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

This week we are taking a closer look at Shadow IT, which is the use of information technology by...

Read More
Threats! What Threats? Detecting Phishing with Stamus Security Platform

Threats! What Threats? Detecting Phishing with Stamus Security Platform

Aug 05, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

Phishing is commonly regarded as the most common and effective way attackers can gain access into a...

Read More
Threats! What Threats? Command & Control and Stamus Security Platform

Threats! What Threats? Command & Control and Stamus Security Platform

Jul 29, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

In this article, we will review one of the most important and critical  phases on the cyber kill...

Read More
Malware Beacons and Stamus Security Platform

Threats! What Threats? Malware Beacons and Stamus Security Platform

Jul 21, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

One of the first network-related indications of a botnet or peer-to-peer (P2P) malware infection is...

Read More
Threats! What Threats? Detecting Lateral Movement with Stamus Security Platform by Mark Durrett

Threats! What Threats? Detecting Lateral Movement with Stamus Security Platform

Jul 14, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

In this article I want to highlight one of the tactics used by malicious actors to move within your...

Read More
Threats! What Threats? Combatting Malware with Stamus Security Platform by Mark Durrett

Threats! What Threats? Combatting Malware with Stamus Security Platform

Jun 30, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

In the first article of this series -- Threats! What Threats? -- I mentioned that my colleague,...

Read More
Embrace Open Interfaces and Open Source

Embrace Open Interfaces and Open Source

Jun 09, 2022 Ken Gramley
Open Source, Suricata, Core Principles, Threat intelligence

When the leadership team at Stamus Networks got together to capture the core principles of our...

Read More
Combatting Ransomware with Stamus Security Platform

Threats! What Threats? | Combatting Ransomware with Stamus Security Platform

Mar 10, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

In the first article of this series –Threats! What Threats? I mentioned that my colleague, Steve...

Read More
Stamus Networks: Threats! What Threats?

Threats! What Threats?

Feb 24, 2022 D. Mark Durrett
Network Detection and Response, Stamus Security Platform, Threat intelligence, Threats! What Threats?

We talk often about “threats” and “threat detection” in our marketing materials and in discussions...

Read More

ABOUT STAMUS NETWORKS ™

Stamus Networks believes in a world where defenders are heroes, and a future where those they protect remain safe. As organizations face threats from well-funded adversaries, we relentlessly pursue solutions that make the defender’s job easier and more impactful. The global leader in Suricata-based network security solutions, Stamus Networks helps enterprise security teams know more, respond sooner and mitigate their risk with insights gathered from cloud and on-premise network activity. Our Stamus Security Platform combines the best of intrusion detection (IDS), network security monitoring (NSM), and network detection and response (NDR) systems into a single solution that exposes serious and imminent threats to critical assets and empowers rapid response. 

Indianapolis, USA Paris, France

Privacy

© 2014-2024 Stamus Networks, Inc. All rights Reserved.