USE CASE: Blitz WarGames
This use case is a summary of the Blitz WarGames, which was organized during the TEHTRIS week in France. We partnered with Whaller to provide a French sovereign platform to our players so that they could work together as teams all throughout the day. About the event: In a full remote exercise, a cyber warfare […]
Use case: USB flash drive attack
In an Industrial Control System environment, let’s imagine the standard maintenance procedure in which files need to be transferred inside an industrial site. For security reasons, automated systems are not connected to the internet to avoid security risks. And some maintenance operations need to be done by external contractors, who may not have access to […]
XDR Use case: MTD & SOAR vs Hook RAT
Why do you need MTD protection ? There is no need to state that the extensive use of mobile phones considerably broadens the attack surface for ill-intentioned actors. However, it is important to keep in mind that professional mobile phones are exposed to greater risks, in particular because they tend to be misused for personal […]
XDR USE CASE: shall we play a game?
In November 2022, a Linux server located in Poland (Europe) was exposed on the Internet. As it was holding sensitive information, this server was of interest to a group of cyberattackers. We assess this group wanted to access the server to exfiltrate data. For the purpose of gathering intelligence on cyber-espionage campaign targeting the organization, […]
LockBit ransomware: Double extorsion attack & protection by TEHTRIS’ XDR Platform
LockBit ransomware group is a malicious actor exceptionally active in the threat landscape. They were the most active group in 2022, in terms of claimed victims. LockBit relies on double extorsion to give more weight to their threat: on the one hand, encrypting the company’s data, and on the other hand, publishing the data online […]
XDR SUCCESS USE CASE: blocking advanced cyber-attacks at an early stage
Thwarting the advanced cyberattacks faced by our customers is the daily work of TEHTRIS’ technology with our partners. Let’s dive into a concrete example in the industrial sector. Context Steps of detection and remediation by TEHTRIS’ tools Lessons learned Context In September 2022, TEHTRIS and its MSSP partner helped counter the first stage of an […]
XDR Success use case: DNS hijacking out
DNS hijacking is the practice of subverting the resolution of Domain Name System requests. The queries are manipulated to redirect users to malicious sites. Since each organization has its own website, and since every employee of an organization is using Internet, DNS hijacking is a significant threat you have to take into consideration when ensuring […]
XDR Success use case: Purple Fox KO
In October 2022, a TEHTRIS customer was protected from the threat known as Purple Fox thanks to the TEHTRIS XDR Platform and its TEHTRIS EDR and EPP modules. Let’s have a look at the ever-evolving exploit kit since its discovery four years ago and how TEHTRIS’ tools work against the threat. Get to know the […]
