Recon InfoSec | Threat Hunting

Detecting Fake CAPTCHA Campaigns: ClickFix, ClearFake, and Etherhide

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Luke Rusten

Our team recently observed a significant uptick in malware campaigns leveraging fake CAPTCHA pages...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Luke Rusten

This post was written by Luke Rusten, our Director of Security Operations, and was originally...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Kelley Wilds

With the ongoing conflict in Ukraine and U.S. sanctions against Russia continuing to build, the...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Kelley Wilds

It’s that time of year again - DEF CON! We were thrilled to run OpenSOC again at DEF CON this year,...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Andrew Cook

Whether your cybersecurity detection and response capabilities are in-house or managed through a...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

Now that we've normalized and enriched our events, let's get into the actual threat detection logic...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Kelley Wilds

The Recon team is excited to announce the launch of SOC X™, the Professional SOC Team World...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Kelley Wilds

The Recon team is thrilled to announce our newest offering, NDR Live Online!

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Whitney Champion

Our team are huge fans of Velociraptor. It's an incredibly powerful tool, for both DFIR and...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Brian Greunke

The Center for Threat-Informed Defense at MITRE recently released their Adversary Emulation Plans...