Web: https://www.reddit.com/r/cybersecurity/comments/vg08ac/what_are_the_simplest_hardening_methods_all/

June 19, 2022, 5:33 p.m. | /u/PhoenixOfStyx

cybersecurity reddit.com

So, we had an incident where a Cobalt Strike Beacon was detected for one of our clients. The clean up was a serious mess, so much so that my MSP had to hire out a different company specializing in IR.

That said, the initial discovery was due to a credential dump on lsass.exe.

Afterwards, I, (an L1 Analyst) found that there was an extremely simple method to harden lsass.exe with minimal--if not 0--impact to business functioning: turning on LSA protection …

companies cybersecurity hardening

Collection Network Penetration Test Engineer TS SCI/Poly Eligible

@ Sixgen Inc. | United States

Senior Infrastructure Security Engineer

@ Angi | Toronto, ON - Remote

Senior Security Operations Engineer

@ Axiom Zen | Remote

Endpoint Protections - Security Research Engineer II

@ Elastic | United States

Senior Cyber Security Engineer

@ Evaluate | London, England, United Kingdom

Device Security Lead

@ Worldcoin | Berlin ; Erlangen ; New York ; San Francisco