ReliaQuest
ReliaQuest’s Experts Weigh In: 2021 Cybersecurity Predictions
This past year has certainly thrown some curveballs at security professionals. With new threats tied to current events like the COVID-19 pandemic and the United States presidential election, organizations have had to re-evaluate their security strategies and shift priorities, and this new focus will undoubtedly carry into the new year. Perhaps the greatest reveal that […]
Giving Back and Giving Thanks to the Community
There’s no doubt that 2020 has proven to be a challenging year for individuals, families, and organizations across the globe. At ReliaQuest, we’ve always valued community roots, and this year especially we’ve been on the lookout for opportunities to spread positivity, help others, and give back in any way that we can. Join us as […]
Credential Dumping Part 2: How to Mitigate Windows Credential Stealing
Credential theft is part of almost all attacks within a network, and one of the most widely known forms of credential stealing is surrounding clear-text credentials by accessing lsass.exe. However, this is only a piece of the bigger picture of the Windows credential model. In Part 1 of the Credential Dumping Series, I took a closer look […]
Credential Dumping Part 1: A Closer Look at Vulnerabilities with Windows Authentication and Credential Management
For many of us in cybersecurity, we know that credential theft is part of almost all attacks within a network. Arguably, one of the most known forms of credential stealing is surrounding clear-text credentials by accessing lsass.exe. Almost synonymous with credential stealing is the popular tool Mimikatz, which is able to access the LSASS (Local Security Authority Subsystem […]
CISOs, Are You Prepared to Answer These Questions in Your Next Board Meeting?
One of the greatest challenges in maturing security programs stems from difficulty showing ROI on your security investments and communicating your security posture and effectiveness in a way that makes sense at the board-level. If you start talking about the number of events per second, firewalls blocked, or MTTR, eyes will start to glaze over […]
How to Stand Out in Your Cybersecurity Job Interview, as Told by ReliaQuest Lead Recruiter Brittany McKie
Job interviews can be a significant source of stress, whether you’re just starting your career in the cybersecurity industry, or you’re a seasoned expert looking for a new opportunity. For many job seekers, the pandemic has created an additional layer of uncertainty in how to approach the process. But with some preparation and an understanding of […]
Black Hat 2020: Session Highlights and a Look Ahead
Last week concluded another valuable Black Hat USA event – although held entirely virtually this year, the impact of the research, trends, and knowledge shared was as strong as ever. From new industry trends such as extended detection and response (XDR) to current event security considerations and best practices to detect and mitigate some of […]
Mature Your Threat Intelligence Program: How to Measure, Benchmark, and Improve Intel Fidelity
When you think of threat intelligence, what comes to mind? Collections of IP addresses, hashes, maybe domains? Like many organizations, you may have many intelligence feeds with thousands of these indicators. How do you make sense of it? How do you create actionable decisions based on these? How do you measure the fidelity of your […]
Protect Your Organization from BYOD Security Risks With These 6 Steps
In today’s workforce, the use of personal mobile devices for work has become the norm. This new environment is what we call Bring Your Own Device (BYOD). While BYOD environments provide many benefits to enterprises such as reduced cost, increased flexibility, and increased productivity, they are also accompanied with security concerns, such as introducing unpatched […]
