Art Appraisal Blog

What is an Attack Surface? An attack surface, also known as an external attack surface or digital attack surface, refers to all internet-accessible hardware, software, platforms, and cloud assets that can be discovered, exploited, and used to breach a company. A cyberattack can leverage an attacker’s ability to leverage the interconnected network of assets within the attack surface. In other words, this is the total number of ways cybercriminals could...

What is MITRE ATT&CK? MITRE ATT&CK stands for MITRE’s Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK). This was introduced in 2013 as a central knowledge base for cyber adversary behavior. A MITRE ATT&CK matrix consists of tactics and techniques used by adversaries to perform a cyber attack. ATT&CK matrix show tactics and techniques in an organized manner, from gaining access to the operating system to stealing data or controlling machines....

What is Cyber Threat Intelligence? Cyber Threat Intelligence is the enriched and aggregated knowledge of the cyber threats extracted by collecting, processing, and analyzing the data to understand and assess malicious threat actors’ motives, intent, targets, and attack behaviors. Threat intelligence helps us make better-informed security decisions and allows us to adopt proactive steps against cyber threats instead of reactive ones. “Threat intelligence is evidence-based knowledge, including context, mechanisms, indicators,...

What is Malware? Malware (malicious software) is software or programs designed to intentionally damage a computer, network, or server. The goal of malware is to disrupt or destroy sensitive data and computer systems by infiltrating computer systems discreetly. The most common types of malware are Trojans, viruses, worms, spyware, malvertising, scareware, keyloggers, backdoors, ransomware, and mobile malware. Signs of Malware Infection on a Computer Malware may exhibit obvious or subtle...

This is a detailed report on the OKTA Lapsus$ hack in January 2022, which has shaken the cyber security community. Continue to read till the end if you want to know how Lapsus$ hackers breached OKTA Networks and its customers, and how the companies responded to the hack along with the timeline of the breach. What is OKTA? Okta is one of the top identity and authentication platforms that provide...

What is Cyber Threat Hunting in Cyber Security? Threat hunting is resource-intensive proactive cyber defense activity with a deep understanding of cyber threats and the tactics, techniques, and procedures (TTP). It is a process to proactively and iteratively detect and isolate threats by searching through networks, endpoints, and datasets for any advanced threats or risky activities that evade existing security solutions of criminal adversaries. Security analysts utilize cyber threat hunting...

What is Cyber Security Visibility, and Why is it Important? Cybersecurity visibility refers to seeing all aspects of an organization’s digital footprint, vulnerabilities, and risks. In addition to the ability to view security controls, security visibility includes areas of vulnerability created by implementing inadequate controls. Cyber security visibility also helps improve cybersecurity performance by recognizing potential threat vectors and ensuring the proper security toolset. Getting the right level of visibility...

What is Computer Forensics? Technological advances have increased the amount of privacy and security concerns in cyberspace. Throughout the past few decades, the role of computers and portable media devices, such as laptops, cellphones, and other devices, in criminal activity has increased significantly. As a result, these devices frequently contain crucial evidence such as user information, logs, location information, emails, images, audio, video recordings, etc., to identify the root cause...

What is an APT? An Advanced Persistent Threat (APT) is a sophisticated cyber threat where an attacker tries to intrude on a target network stealthily and maintain long-term access to the infrastructure inside the target network, exfiltrating crucial information. The main goals of APTs are espionage, hacktivism, financial gains, or destruction. In this blog, you will understand the life cycle of an APT, how APT works, and some examples of...

What is an MDR? MDR stands for Managed Detection and Response. It is a cyber security service offering outsourced to organizations for providing services like 24/7 security monitoring, forensic investigations, threat detection, and incident response. Gartner states that “MDR services provide remotely-delivered modern security operations center capabilities focused on quickly detecting, investigating and actively mitigating incidents.” MDR is a combination of human expertise, threat intelligence feeds, and technology resources to...