all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Following the Trail of Threat Actors in Google Workspace Audit Logs

Add to bookmarks
w
April 19, 2024, midnight |

SANS Blog www.sans.org

When approaching incident response in an environment you may not be very familiar with, the biggest challenge is often knowing what to look for. This is especially true when you’re facing dozens of data sources with hundreds of event types. As an incident responder, it’s your job to determine what is legitimate and what is not among a sea of activity, which is easier said than done. This blog post and its accompanying cheat sheet provide guidance on some key …

audit challenge data data sources environment event facing google google workspace incident incident responder incident response job logs may responder response threat threat actors types workspace

Visit resource

More from www.sans.org / SANS Blog

SA
Deploying Multi Factor Authentication – The What, How, and Why 2 days, 4 hours ago | www.sans.org
authentication blog factor
SA
Insane Incident Incursion Recursion: Mastering Incident Response Reporting Regulations 3 days, 4 hours ago | www.sans.org
blog control control system incident +8
SA
Spring 2024 Update: Explore the Latest Enhancements to SANS FOR585: Smartphone Forensic Analysis In-Depth 6 days, 4 hours ago | www.sans.org
analysis depth forensic forensic analysis +6
SA
The Ripple Effect: NIS2's Impact on Cybersecurity Practices Across the EU 1 week, 2 days ago | www.sans.org
blog compliance cybersecurity cybersecurity practices +5
SA
Following the Trail of Threat Actors in Google Workspace Audit Logs 1 week, 6 days ago | www.sans.org
audit challenge data data sources +17
SA
Enhancing Your Cyber Defense: Comparing Simulations and Tabletop Exercises 2 weeks, 1 day ago | www.sans.org
blog cyber cyber defense defense +4
SA
Aviata Cloud Solo Flight Challenge 2 weeks, 2 days ago | www.sans.org
challenge cloud cloud security flight +5
SA
Beyond Compliance: Leveraging NIS2 for Enhanced Cyber Resilience and Leadership Accountability 2 weeks, 3 days ago | www.sans.org
accountability beyond blog compliance +5
SA
The Quest to Summit | SANS ICS Security Summit 2024 3 weeks, 2 days ago | www.sans.org
ics ics security quest register +4

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland
View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France
View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States
View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India
View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC
View on infosec-jobs.com
View more jobs