"True partnership requires effort, trust, and a close working relationship. A partner listens, understands, and addresses your unique needs and challenges, often knowing more about certain aspects of your organization than parts of your own team," says PacketWatch CEO Chuck Matthews. Read how we partner with best-in-class technology partners and what it means to be a true partner: https://hubs.li/Q02FJGBd0 #cybersecurity #partnerships
PacketWatch
Computer and Network Security
Scottsdale, Arizona 764 followers
Finding Security Risks Other Tools May Miss
About us
PacketWatch is a boutique cybersecurity consulting firm that delivers enterprise-class security services to identify, detect, and respond to cyber-threats that have circumvented traditional information security controls. PacketWatch services use a proprietary packet-level network monitoring, analysis, and investigation platform to visualize and discover abnormal network activity and patterns over time. Our cybersecurity experts, threat hunters, and analysts help midsize and enterprise organizations gain confidence in their security posture with assessment, managed security, and incident response services. Services: • PacketWatch Network Security Assessment (NSA) • PacketWatch Managed Detection and Response (MDR) • PacketWatch Enterprise • PacketWatch Incident Response (IR) • PacketWatch Advisory Services All services are custom-configured, allowing our clients to leverage internal cybersecurity tools, resources, and procedures, as required. The PacketWatch dashboard provides information technology and cybersecurity professionals with total visibility of their network—integrating full packet capture, intrusion detection, extensive intelligence, and network replay to investigate unusual network activities. Our affordable managed detection and response services allow midsize and enterprise clients to add threat hunting activities and expertise to their teams, quickly. Learn more at www.packetwatch.com.
- Website
-
https://packetwatch.com
External link for PacketWatch
- Industry
- Computer and Network Security
- Company size
- 11-50 employees
- Headquarters
- Scottsdale, Arizona
- Type
- Privately Held
- Founded
- 2018
- Specialties
- Managed Detection and Response (MDR), Network Security Assessment (NSA), Enterprise Threat Hunting Platform, Incident Response, Digital Investigation, Digital Forensics, Security Policy, Security Governance, Risk Assessment, Vulnerability Assessment, Security Controls Testing, Cyber Incident Response, Cybersecurity, Cyber Security, Cybersecurity Education Programs, Cybersecurity Awareness Training, Threat Intelligence, Incident Response Plan, CIS Top 20 Assessment, Cybersecurity Advisory Services, Cybersecurity Professional Services, Cybersecurity Consulting, Managed Security Services Provider (MSSP), Security Operations Center (SOC), and Threat Hunting
Locations
-
Primary
6263 N Scottsdale Rd
Scottsdale, Arizona 85250, US
Employees at PacketWatch
Updates
-
This week in our #ThreatIntel report, we cover the latest in research showing a new infection technique spotted in the wild (dubbed GrimResource), which leverages specially crafted Microsoft MSC (.msc) files. We also provide threat hunting queries and opportunities for detection and prevention. Access the full report for free: https://hubs.li/Q02DZkFG0 -- ➕ Follow PacketWatch for #cybersecurity news and articles 🔁 Share this report with your network
-
🏃♂️ "In the aftermath of a #ransomware attack, the instinct to quickly restore systems and resume operations can lead to severe consequences," warns PacketWatch CEO Chuck Matthews. Infosecurity Magazine reported earlier this year that nearly 4 out of 5 organizations were hit with a second ransomware attack several months after a first attack – sometimes by the same threat actor. "The key to preventing this recurrence is prioritizing eradicating threats before rushing into recovery," says Matthews. Read the full article (for free) now and arm yourself with the knowledge to respond effectively and mitigate damage in the case of a cyber incident: https://hubs.ly/Q02D3l8z0
Just Remember, "E" Comes Before "R" | Cybersecurity Incident Response | PacketWatch Blog
packetwatch.com
-
Read the latest #ThreatIntel report from our team, covering: ❄️ Snowflake's Data Breach: Lessons Learned and How You can Protect Your Organization 🏇 Vulnerability Roundup, featuring CVEs from: - Microsoft Message Queueing Service (MSMQ) - PHP Remote Code Execution Vulnerability - Actively Exploited Privilege Escalation Vulnerability Used by Black Basta Ransomware Group Read the full report for free: https://hubs.li/Q02C6_0l0 --- ➕ Follow PacketWatch for #cybersecurity news and articles 🔁 Share this report with your network
Snowflake Data Breach: Lessons Learned | PacketWatch Threat Intelligence | June 17, 2024
packetwatch.com
-
🌜 As recently as April 2024, Microsoft observed North Korean APT 'Moonstone Sleet' deploying a custom ransomware variant dubbed FakePenny. The ransom note is nearly identical to those observed with the infamous NotPetya ransomware. The ransom demands of FakePenny are as high as $6.6 million USD. Read our full #ThreatIntel briefing and more: https://hubs.li/Q02zmx7B0 -- Follow PacketWatch for more #cybersecurity news and content, delivered weekly.
Moonstone Sleet APT, 911 S5 Proxy Removal, and More | PacketWatch Threat Intelligence | June 3, 2024
packetwatch.com
-
🤖 Does your organization have an #AI Use Policy in place? PacketWatch Senior GRC Advisor Todd Welfelt explores the real risks of Artificial Intelligence platforms like #ChatGPT and other #LLM tools and how organizations can protect themselves in our latest article. Read about NIST's AI Framework (100-1 RMF) and how you can start working towards securing your business from AI risks: https://hubs.ly/Q02y9RnQ0
Identifying and Managing AI Risks in Your Environment | Cybersecurity GRC | PacketWatch
packetwatch.com
-
🏴 This week's #ThreatIntel covers the TTPs of #BlackBasta and how you can protect your organization: "Black Basta has been in operation since 2022 and is believed to be comprised of former Conti ransomware members. During this two-year active streak, the group has targeted over five hundred entities across the globe. Like many of their ransomware counterparts, Black Basta is a double-extortion group, where they will encrypt systems in the target environment as well as exfiltrate and disclose data if the ransom is not paid." Read our full report and a #CriticalVulnerability roundup here: https://hubs.li/Q02xR5JC0 -- Follow PacketWatch for more #cybersecurity news and content, delivered weekly.
Black Basta Ransomware Gang and Critical Vulnerabilities to Patch | PacketWatch Threat Intelligence | May 20, 2024
packetwatch.com
-
🍎 We're hosting our webinar with SOCRadar® Extended Threat Intelligence on Cyber Threat Intelligence for Threat Hunting 101 in an hour! Register now 👉 https://lnkd.in/gTU5gXnQ
🕵♂️ Are you ready to start Threat Hunting? PacketWatch is proud to announce our upcoming webinar, "Cyber Threat Intelligence (CTI) for Threat Hunting 101" in collaboration with our partner SOCRadar® Extended Threat Intelligence. This session is geared towards cybersecurity professionals and enthusiasts looking to leverage CTI in their threat hunts. 📆 Event Details Date: May 16, 2024 Time: 1:00 pm PST / 4:00 pm EST Where: Online - join us from anywhere! Registration is completely free.
This content isn’t available here
Access this content and more in the LinkedIn app
-
Have you heard? 🪱 A group of researchers developed what they believe to be the first self-replicating #AI worm, formally known as an "adversarial self-replicating prompt." It targets generative AI powered by Large Language Models (LLMs) like #ChatGPT, Llama, and Gemini. "As AI-enabled tools flood the market, we must acknowledge the security risks associated with implementing AI, including vulnerabilities to the models on which they are built," says PacketWatch CEO Chuck Matthews. Read the full article now: https://hubs.li/Q02wzK3v0
From Morris to Morris II: AI Models are Vulnerable to Worms, Too | CEO Vantage Point | PacketWatch Blog
packetwatch.com