It is time for another blog post, this time looking at the recent update to the Mitre ATT&CK framework. The Mitre ATT&CK framework version 9 was released on 29th April, which contained many additional techniques and sub-techniques. As Elemendar’s READ product uses Mitre ATT&CK to extract attack patterns from CTI
The sharp-eyed among you may have noticed we released no news for Feb. We’ve been so busy since our successful fundraise in Dec that I sat down to write it and only then realised we were in late March already. Despite the pandemic, time is moving swiftly in cybersecurity and
Firstly, this is a picture of my much-loved tortoise Bob. We have another named Terabyte, but she doesn’t like the camera. And of course, we have a bundle of sticks. I couldn’t find a picture of sticks that I liked, so I took this one, with Bob. At Elemendar, we
CVE-2017-5753, commonly known as Spectre, is a side-channel attack which exploits the speculative execution processes performed by modern CPU’s. So what do these terms mean? Side-channel attacks A side-channel attack is an attack based on information gained from the actual implementation of a computer system, rather than weaknesses in an
Looking at different use cases for Open Source Intelligence - contrasting ‘Foresight analysis’ with ‘Cyber Threat Intelligence’ Open-source intelligence means using data and information that is readily available (generally for free) in the public domain to gain a better understanding of things. In this post, I’m going to explore two
So, here we are in Jan 2021. A new year. Please take a well deserved deep breath. Here at Elemendar (like most of us in cyber) we are busy. Already since our successful raise in December, we have four new full-time team members. This brings us to eleven full time and
59% of companies report being at cybersecurity risk because of staff shortages. This means that cybersecurity departments and cyber analysts are under continual pressure. So how do we achieve more with what we have? The short answer is with automation By automating regular and repetitive tasks, not only can you
The SolarWinds supply chain attack, named SUNBURST by FireEye and Solorigate by Microsoft, has affected a large number of companies such as FireEye, Google, and Microsoft. The attack involved an APT group which compromised an update server for the SolarWinds Orion product line, inserting a malicious backdoor. As our contribution
We've raised! Despite 2020's challenges, we are thrilled to announce that we have closed our first institutional funding round, led by Newable Ventures, at £680,000 (over $0.9m). It’s a privilege to receive this vote of confidence and secure the resources to bring our technology to more customers and help to make us all safer. Our
Let’s all take some deep breaths and keep one eye on a vaccine. It's good news that there is more than one COVID vaccine coming through with seemingly very high success rates. It’s been a hard 2020 but by the end of summer 2021, we hope to be looking forward through
