June 3, 2024 at 07:30AM
Cato’s Cyber Threat Research Lab has released its first SASE threat report, providing a comprehensive view of enterprise and network threats based on extensive network analysis. The report covers threats across strategic, tactical, and operational standpoints and highlights insights such as the adoption of AI tools, exploitation of unpatched systems, and industry-specific security exploitations. Visit their website for more details.
From the meeting notes, I have synthesized the key takeaways:
1. Cyber Threat Intelligence (CTI) needs to offer a holistic analysis across external data, inbound and outbound threats, and network activity for a comprehensive view of an organization’s cybersecurity state.
2. Cato’s Cyber Threat Research Lab (Cato CTRL) has released its first SASE Threat Report, providing insights into enterprise and network threats based on extensive network analysis capabilities.
3. The SASE Threat Report covers threats using the MITRE ATT&CK framework and includes malicious and suspicious activities and applications, protocols, and tools running on the networks.
4. Cato collected data from 2200+ customers, 1.26 trillion network flows, and 21.45 billion blocked attacks to provide a unique view of enterprise security activity.
5. Cato CTRL provides tactical data to SOC, operational threat intelligence to managers, and strategic briefings to the management and board, utilizing a unique combination of human intelligence and comprehensive network and security insights.
6. The top findings from the SASE Threat Report include insights on enterprise adoption of AI tools, discussions in underground hacker forums, spoofing of well-known brands, unsecured protocols in enterprise networks, the importance of patching systems, targeted security exploitations across industries, contextual understanding of network patterns, and low adoption of DNSSEC.
These takeaways highlight the importance of comprehensive cyber threat intelligence and the unique insights provided by Cato CTRL’s SASE Threat Report.