all InfoSec news logo
all InfoSec news - The InfoSec & Cyber news aggregator
Sign in Sign up
all InfoSec news

What are the simplest hardening methods all companies should implement?

Add to bookmarks

Web: https://www.reddit.com/r/cybersecurity/comments/vg08ac/what_are_the_simplest_hardening_methods_all/

June 19, 2022, 5:33 p.m. | /u/PhoenixOfStyx

cybersecurity reddit.com

So, we had an incident where a Cobalt Strike Beacon was detected for one of our clients. The clean up was a serious mess, so much so that my MSP had to hire out a different company specializing in IR.

That said, the initial discovery was due to a credential dump on lsass.exe.

Afterwards, I, (an L1 Analyst) found that there was an extremely simple method to harden lsass.exe with minimal--if not 0--impact to business functioning: turning on LSA protection …

companies cybersecurity hardening

Visit resource

More from reddit.com / cybersecurity

Rogue HackerOne employee steals bug reports to sell on the side 5 hours ago | reddit.com
bug cybersecurity employee hackerone +2
Data loss prevention - where to start? 6 hours ago | reddit.com
cybersecurity data data loss data loss prevention +3
Reverse Engineering how WAFs Like Cloudflare Identify Bots — IPM 6 hours ago | reddit.com
bots cloudflare cybersecurity engineering +3
Threat Stack Vulnerability Checks 7 hours ago | reddit.com
cybersecurity threat threat stack vulnerability
why are jobs not being filled? 8 hours ago | reddit.com
cybersecurity jobs why
Day to Day activities of an Azure admin 11 hours ago | reddit.com
azure cybersecurity day
End-User Awareness 16 hours ago | reddit.com
awareness cybersecurity end user
Cyber Threat Intelligence 17 hours ago | reddit.com
cyber cybersecurity cyber threat cyber threat intelligence +3
Next step in securing a cybersecurity job? 18 hours ago | reddit.com
cybersecurity cybersecurity job job

Latest InfoSec / Cyber Security Jobs

View more jobs Post a job on infosec-jobs.com

Collection Network Penetration Test Engineer TS SCI/Poly Eligible

@ Sixgen Inc. | United States
View on infosec-jobs.com

Senior Infrastructure Security Engineer

@ Angi | Toronto, ON - Remote
View on infosec-jobs.com

Senior Security Operations Engineer

@ Axiom Zen | Remote
View on infosec-jobs.com

Endpoint Protections - Security Research Engineer II

@ Elastic | United States
View on infosec-jobs.com

Senior Cyber Security Engineer

@ Evaluate | London, England, United Kingdom
View on infosec-jobs.com

Device Security Lead

@ Worldcoin | Berlin ; Erlangen ; New York ; San Francisco
View on infosec-jobs.com