You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2.2 KiB
2.2 KiB
| 1 | Timestamp | Which CERT NZ Phase does this content align with? Read more about these in the CERT NZ Ransomware guide linked above. They are represented by the "Circle" shapes in the diagram. | What's the Title of the content | What's the Description of the content | What Type is the content? | Where is the content located (URL or ID for .conf) ? | Content Id (if applicable) | Email Address |
|---|---|---|---|---|---|---|---|---|
| 2 | 3/28/2022 15:44:22 | Internet-exposed services, Patching, Multi-factor authentication (MFA), Disable macros, Application allowlisting, Logging and alerting, Password manager, Principle of least privilege, Network segmentation, Backups | How ransomware happens and how to stop it | Ransomware attacks are becoming increasingly common and sophisticated. This is how CERT NZ’s critical controls can help you stop a ransomware attack in its tracks. | Blog | https://www.cert.govt.nz/it-specialists/guides/how-ransomware-happens-and-how-to-stop-it/ | N/A | |
| 3 | 3/29/2022 15:35:08 | Internet-exposed services, Patching, Multi-factor authentication (MFA), Disable macros, Application allowlisting, Logging and alerting, Password manager, Principle of least privilege, Network segmentation, Backups | How Ransomware Happens, and how to stop it | Overview of possible avenues an attack can occur and the path it takes. Followed by the critical controls you can put into place to help make things a bit harder for the actor. | Blog | https://www.cert.govt.nz/it-specialists/guides/how-ransomware-happens-and-how-to-stop-it/ | ||
| 4 | 5/13/2022 10:46:36 | Phishing | Anatomy of an Attack | "This session covers how an actual phishing attack from APT29 came together. We will discuss how incident responders can learn more about the attack and build out a timeline of key events. We will also explain how DNS based security plays an important role in proactively blocking threats and how integrations with Splunk can help you with effective threat hunting." From .conf19, session SECS3014 Special thanks and credit to Mark Stanford, Cisco Systems and Splunk | Video | https://www.youtube.com/watch?v=T-R61ieh5p0 | jbjerke@splunk.com | |
| 5 | 5/13/2022 10:47:59 | Password guessing | Brute Force Attack in Splunk | Recorded at Black Hat Training on July 31, 2021 | Video | https://www.youtube.com/watch?v=XCqXCPB37Es | jbjerke@splunk.com |