Resources Archives

Cyber Tide Season 1, Episode 1: The Makings of Adlumin

November 1, 2022/in Podcasts/by Adlumin Staff

Introducing the Cyber Tide Podcast! Dive beneath the surface of infamous cyber security attacks to learn the means and motives of cyber adversaries. Each episode we invite an expert to reveal the contributing factors and costs of cyber incidents and how your firm can protect itself from business-disrupting cyberattacks.

In this inaugural episode of Cyber Tide, co-hosts Mark Sangster, Adlumin’s VP of Strategy and Co-founder and EVP take a trip down memory lane to uncover the story behind Adlumin’s origin. Joined by veteran, Co-founder and CEO, Robert Johnston, the co-founders discuss how their extensive cybersecurity backgrounds and service in the U.S. Intelligence Community led them to build the command center for security operations.

You can subscribe to CyberTide via Apple and  Spotify.

About the Cyber Tide Series

Dive beneath the surface of infamous cybersecurity attacks to learn the means and motives of cyber adversaries. In each episode, we invite an expert to reveal the contributing factors and costs of cyber incidents and how your firm can protect itself from business-disrupting cyberattacks.

Listen to Cyber Tide Episode 1

Apple: https://apple.co/3DVeHgH
Spotify: https://spoti.fi/3tj5J8d

Adlumin Improves Network Health Score for Financial Plus Credit Union

October 26, 2022/in Resources/by Adlumin Staff

Learn how Adlumin’s combination of platform and people helped Financial Plus Credit Union establish a 24/7 Security Operations Command Center and increase their network security health and compliance.

Shedding Light on the Unknown: An MDR Platform ++

October 26, 2022/in Resources/by Adlumin Staff

Explore how a firm, often asked to help with nation-state exploitation and long-term investigations into cybercriminal activity, searches for and finds the right MDR ++ solution to fit their global needs. The firm was most interested in rapidly deploying an investigative tool to help understand user and account activity in a contested environment.

How Ogden City Extended Their Security Operations to 24x7 with Adlumin’s Managed Detection and Response platform plus extended risk management and security tools.

October 26, 2022/in Resources/by Adlumin Staff

Learn how Adlumin’s Managed Detection and Response platform and security experts helped Ogden City extend their security operations to 24/7 and sign a 5-year deal with the company.

Adlumin Provides Total Visibility to Kelly Community Federal Credit Union

October 24, 2022/in Resources/by Adlumin Staff

Discover how Adlumin enhanced security operations at Kelly Community Federal Credit Union through its a managed detection and response platform equipped with comprehensive reporting tools, threat detection, and more.

Key Features of Adlumin’s Security Operations Center (SOC)

October 24, 2022/in Datasheets/by Adlumin Staff

Learn the key features and technologies each Security Operations Center (SOC) must include to keep up with today’s evolving attacks. A dedicated SOC gives organization visibility beyond its boundaries by providing continuous monitoring, detection, and response 24×7. Delivering high-confidence alerts, each organization receives analysis, recommendations for confirmed incidents, and proactive security actions.

Download this guide to learn:

What is included in darknet web monitoring
How real-time detections work
The importance and impact of 24×7 support is
The benefits of situational awareness and reporting

Adlumin wants to be your guide to ensure you know what your organization is up against while equipping your IT landscape with the necessary tools.

Submit this form to get your copy of Key Features of Adlumin’s Security Operations Center (SOC).

The Adlumin Difference

October 24, 2022/in Guides/by Adlumin Staff

Learn how to simplify your compliance requirements and what features you need for better protection Adlumin’s Managed Detection and Response platform features world-class analytics, compliance reporting and automation tools, integrated threat intelligence and more.

Download PDF

Full Threat Lifecycle Management Model Applications

October 20, 2022/in Resources Mark Sangster/by Adlumin Staff

Learn about the industrialization of cybercrime, top cybersecurity challenges, the impact of MDR/XDR architecture, and the benefits of adopting the NIST framework in this paper. Download now to gain valuable insights into the current threat landscape and how to protect your organization.

Progressive Penetration Testing Program

September 16, 2022/in Guides/by Adlumin Staff

The Adlumin Progressive Penetration Testing Program offers comprehensive assessments tailored to each customer’s risk tolerance. By simulating different attack scenarios, from internal exploits to external threats, organizations can identify vulnerabilities and prioritize their cybersecurity efforts.

Traditional annual penetration tests no longer suffice against sophisticated cyber adversaries, as they provide only a snapshot of security health. Adlumin’s program goes beyond formulaic methodologies, addressing the evolving threat landscape with real-world scenarios and providing actionable recommendations.

Download this paper to:

Find out how to test, document and explain each vulnerability and its impact. We show how to collect, evidence, observed instances, and review remediation recommendations.

Zero-Day Vulnerability Discovered: Google Chrome’s Sixth Zero-Day Exploit This Year

September 7, 2022/in Resources Richard Hamrick/by Adlumin Staff

Google has released a security update for the Chrome browser on Windows, Mac, and Linux to fix a newly discovered zero-day vulnerability that is being exploited actively by cyberattacks – and users are urged to apply the update as soon as possible.

What You Need To Know

CVE-2022-307 is the designation given to the newest round of Chrome Zero-Day exploits – insufficient data validation in Mojo.

Mojo is a collection of run-time libraries used to power Google Chrome. Generally presented in the application’s working directory, Mojo is required when running high-level support libraries within Google Chromium. This includes System APIs and/or Binding APIs.

While the extent of this exploit is not currently known, as it has not been released by Google yet, we have previous exploits carrying the same description to keep us out of the dark. The vulnerability tagged CVE-2021-4098 was also ‘Insufficient data validation in Mojo in Google Chrome’ prior to 96.0.4664.110.

If this vulnerability is left unpatched, it opens the host to a remote sandbox escape tactic, typically crafted from a fake website that the host believes to be legitimate. Specifically attacking the renderer process, a fake HTML page is generated by the attacker and lures the host in.

Google has not provided exact details of the security update, noting, “Access to bug details and links may be restricted until a majority of users are updated with a fix.” Information about the vulnerability is likely being withheld for now to prevent cyber criminals from taking advantage of it before most Google Chrome users have had an opportunity to apply the update.

Continuous Monitoring

Adlumin recommends using a Continuous Vulnerability Management (CVM) product to collect the needed data from endpoints to determine if they are running vulnerable versions of Microsoft Windows and Office. CVM software can also be used to identify those assets which have or do not have the official Microsoft mitigation in place. Adlumin also recommends leveraging the business’s SIEM product to continually search and alert for suspicious executions which may be a result of the exploitation of the vulnerability.