At CyberPlural MSSP, we facilitate practices and teams that are devoted to preventing, detecting, assessing, monitoring, and responding to cybersecurity threats and incidents. We are […]
Category: Security Operations
Internet-Facing RDP: A Backdoor Invitation to Ransomware
Introduction Many cybersecurity stories begin after a breach, but this one starts before. In this blog, we aim to demonstrate how proactive monitoring can transform […]
Critical Alert: Protecting Your SharePoint Servers from ToolShell Exploits
Introduction In recent months, our Managed Detection and Threat Response (MDTR) team has been closely monitoring emerging trends in cybersecurity threats. One area of concern […]
When Zero-Day Hits, Will Your Defense Stand?
Zero-day vulnerabilities literally have no remediation at the time of discovery and or exploitation. Think about it: They are called zero-day vulnerabilities for a reason, […]
Leveraging “AlwaysInstallElevated” for Windows Privilege Escalation
The “AlwaysInstallElevated” setting in Windows is a misconfiguration that allows low-privileged users to escalate privileges to SYSTEM by installing MSI packages. This setting is often […]
How to Build a Robust Defense in Depth with Snort and pfSense
What is Defense in Depth Defense in Depth is a cybersecurity strategy that employs multiple layers of security controls throughout an organization’s IT environment to […]