Bytes Europe<p>Are SOC Teams Ready For Geopolitical Cyber Threats? <a href="https://www.byteseu.com/1224220/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">byteseu.com/1224220/</span><span class="invisible"></span></a> <a href="https://pubeurope.com/tags/CyberIntelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberIntelligence</span></a> <a href="https://pubeurope.com/tags/Cyberwarfare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cyberwarfare</span></a> <a href="https://pubeurope.com/tags/GeopoliticalCyberThreats" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GeopoliticalCyberThreats</span></a> <a href="https://pubeurope.com/tags/Geopolitics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Geopolitics</span></a> <a href="https://pubeurope.com/tags/RobinDimyanoglu" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RobinDimyanoglu</span></a> <a href="https://pubeurope.com/tags/SOC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SOC</span></a></p>
Administered by:
#soc
1 post1 participant0 posts today
If you suffer a breach, I am absolutely saying you should review and secure your netinf, not just stick a ZT shaped plaster on top of it.
Especially if you have default creds, ejected MSSP and unauth'd routing protocols in the mix.
Curious about all the open source and projects developed by @circl ?
CIRCL Open Source tools powering SOC & CSIRT teams.
#opensource #cybersecurity #soc #csirt #threatintel #threatintelligence
5 Features Every AI-Powered #SOC Platform Needs in 2025
https://securityaffairs.com/180070/security/5-features-every-ai-powered-soc-platform-needs-in-2025.html
#securityaffairs #hacking
Security Affairs · 5 Features Every AI-Powered SOC Platform Needs in 2025A modern AI-based SOC platform must adapt in real time to handle alert overloads and fast-moving threats, surpassing traditional SIEM tools.
Replied in thread
Exciting Announcement!
Join us tomorrow at 14:00 CET for the Kunai Workshop Virtual Summer School (VSS) organized by CIRCL! 
What You'll Learn:
- The basics of Kunai
- Using Kunai tools (https://github.com/kunai-project/pykunai#)
- Configuring Kunai with MISP IoCs
- Building advanced log filtering and detection rules
- How to use Kunai and Yara
Program and Prerequisites:
Make sure to check out the program and complete the prerequisites before joining: https://github.com/kunai-project/workshops/tree/main/circl-vss-2025#readme
How to Join VSS: https://www.circl.lu/pub/vss-2025/
Don't miss this opportunity to enhance your skills with Kunai! See you there! 
GitHubGitHub - kunai-project/pykunai: Repository of helper tools for KunaiRepository of helper tools for Kunai. Contribute to kunai-project/pykunai development by creating an account on GitHub.
How exposure-enriched SOC data can cut cyberattacks in half by 2028 https://www.helpnetsecurity.com/2025/06/30/plextrac-data-exposure-management/ #Expertanalysis #Expertcorner #cyberattacks #Don'tmiss #Hotstuff #PlexTrac #News #data #risk #SOC
Help Net Security · How exposure-enriched SOC data can cut cyberattacks in half by 2028 - Help Net SecurityPlexTrac bridges the gap between exposure management and response by uniting all security data in one powerful platform.
Someone should make a circuit board that fits in an original #tamagotchi shell and upgrades the screen and CPU so that it can do a lot of extra stuff; #gps location tracking, #meshtastic node, #pentesting and #radio #hacking like a #flipperZero, etc. Maybe some #arm #soc like a #RaspberryPi, or #Rockchip, or maybe just a little #ESP32. Maybe just cram a #Pebble watch in there or something.
Why the SOC needs its “Moneyball” moment https://www.helpnetsecurity.com/2025/06/25/soc-ai-powered-graphs/ #Artificialintelligence #Expertanalysis #cybersecurity #Expertcorner #Don'tmiss #Hotstuff #Illumio #opinion #News #data #SOC
Help Net Security · Why the SOC needs its “Moneyball” moment - Help Net SecurityAI-powered graphs give SOC analysts clarity to act fast. They show why something’s a risk, and what to do next.
Replied in thread
@cleverboi @FandaSin @BrodieOnLinux @neal as for #i386 I understood why cuz it was more and more painful m, but the problem with #i486 is that in several #embedded and #industrial setups there are still newly deloyed systems based off it.
I.e. #Vortex86 #SoC's cuz #MSDOS and shit still gets used in #industrial equipment.
- And #Linux is kinda necessary to keep that rollin'...
Linux stopped supporting i386 with versions 3.4.99 (longterm) & 3.6.9 respectably.
- And unlike with
i386where none of the toolchain (#musl) and utilities (#toybox) supoort it,i486is still supported there.
And I really want to continue developing a minimalist "rescue" distro that can handle such legacy hardware because it may be the only option to ddrescue stuff from certain systems or to properly & reproduceably backup & restore them!
GitHubOS1337/docu/linux.kernel.versions.tsv at main · OS-1337/OS1337OS/1337 Project . Contribute to OS-1337/OS1337 development by creating an account on GitHub.
Dear Cybersecurity Vendors, OEMs, and VARs,
If you're not pronouncing SOCaaS "suckass," you're doing it wrong.
Top Cyber Threats You Shouldn't Miss (June 18)
SuperCard Malware hijacks Androids to relay payment card data.
Stargazers Malware targets Minecraft mod users with info-stealers.
Fake Bank Ads on Instagram scam users with deepfake tactics.
Enterprise SIEMs miss 79% of known MITRE ATT&CK techniques https://www.helpnetsecurity.com/2025/06/09/siem-detection-coverage/ #threatdetection #cybersecurity #CardinalOps #MITREATT&CK #framework #report #survey #MITRE #News #SIEM #SOC
Help Net Security · Enterprise SIEMs miss 79% of known MITRE ATT&CK techniques - Help Net SecurityUsing the MITRE ATT&CK framework as a baseline, organizations are generally improving year-over-year in understanding SIEM detection coverage.
Kunai Sandbox is now live!
Curious about Kunai? Want to analyze Linux malware logs? Or share malware analysis to build detection rules? Kunai Sandbox has you covered! 
Check out what Kunai can do:
Explore Kunai's log structure without running it locally Analyze logs generated by Linux malware Share malware analysis with others to build detection rules
See an example analysis of the perfctl #linux #malware: https://sandbox.kunai.rocks/analysis/59edbf8c-41b7-4144-97e0-9b0571446c02
Continued thread
The cloud security crisis no one’s talking about https://www.helpnetsecurity.com/2025/06/05/cloud-threats-detection/ #cloudsecurity #cybersecurity #report #survey #News #ARMO #SOC
Help Net Security · The cloud security crisis no one's talking about - Help Net SecurityThe mean time to detection (MTTD) remains too slow for organizations to stay ahead of fast-moving cloud threats.
Investigation Scenario 
While reviewing company code in Github, you discover odd javascript that downloads+executes a file from an unknown domain that is currently inaccessible.
What do you look for to investigate whether an incident occurred?
New Blog Post: Kunai vs io_uring (https://why.kunai.rocks/blog/kunai-vs-io_uring)
Ever wondered how io_uring revolutionizes I/O operations in the Linux kernel? Inspired by Armo's blog post (https://www.armosec.io/blog/io_uring-rootkit-bypasses-linux-security/) about a PoC rootkit using io_uring, we explored this feature's security implications and how tools like Kunai can monitor these operations.
Key Takeaways:
io_uring boosts I/O performance by reducing system call overhead and enabling asynchronous operations Security tools struggle to monitor io_uring due to its unique handling of operations Kunai now provides visibility into io_uring operations, though blocking malicious activities remains challenging Recent kernel versions have introduced auditing and security controls for io_uring, but these are still limited
Read more: why.kunai.rocks · Kunai vs io_uring | KunaiIntroduction
Replied in thread
@joel @rl_dane @tripplehelix yeah, basically a "better SP" than Nintendo will ever sell you!
Just a nice, consistent #SoC with case, display, battery & BMS to make it go brrr....