Emergence of Akira Ransomware Group
The Recon SOC recently worked an IR case involving the newly emerged Akira Ransomware Group. News...
Audit Active Directory Attack Paths with Bloodhound
In our experience working with SMB and enterprise IT teams, it is often unknown just how far and...
A Tribute to OpenSOC
End of an Era Recently the Recon team had to make the tough decision to take a step back from...
Recon was at CactusCon 11!
We had the absolute pleasure to attend CactusCon11 this year which is easily one of our favorite...
Another LastPass Breach and What You Should Know
As you have no doubt heard, LastPass has suffered yet another breach which makes at least 3...
Every Organization Needs Centralized Logging
Logs are on the systems, why do I need this? Because Digital Forensics & Incident Response is...
Okta + LAPSUS$ Security Incident
As many in the industry are now aware, Okta experienced a form of security breach back in January...
Recon InfoSec Receives SOC 2 Type II Certification
At Recon, we are committed to meeting the security demands of the evolving threat landscape and...
Scaling Enterprise Forensic Timelining
In July, Eric & Whitney gave a talk titled "Breaches Be Crazy" at the SANS DFIR Summit outlining...
Detecting Threats with Graylog Pipelines - Part 3
Now that we've normalized and enriched our events, let's get into the actual threat detection logic...