Jigsaw Security has integrated fully with Office 365 natively in our threat intelligence and NoSQL intelligence platform. Previously we would just ingest raw data but as of today the newest module will ingest Office 365 logs natively. This feature is great for companies that are using a mix of on premise and offsite hardware. The new feature can be implemented in an automated manner meaning all new logs are automatically captured and stored indefinitely in the platform. Items

While reading through our OSINT sources today we noted that a report from NSS Labs pretty much outlined what we already know about firewall technology. Of the tested firewalls in the report, none of them stopped all variations of threats during testing. This should be a stark warning to those companies that rely solely on firewalls to protect the enterprise. Lack of resilience - Quote from the article NSS Labs added a new test in 2018 for resiliency against modified exploits

With the recently reported security issues with Facebook we have fielded several questions as to whether or not we utilize Facebook ThreatExchange for any of our threat intelligence. The short answer is no, the long answer is more complicated. In short in 2015 when we first started providing security related services one of our feeds was Facebook threat exchange. Upon ingesting the data we started noting that the service was being "poisoned" with invalid data. Thousands of re

The C-Suite Challenge - Program Ending Soon In early 2017 Jigsaw Security decided to make our sensor product available as part of what we call the C-Suite Challenge. The challenge is to install our DNS server and sensor on your network and if we don't detect malware in the first 30 days you don't pay. To date we have had 2 companies take us up on the offer and both are now paying customers. By letting customers try our technologies before they buy it, we can show the value th

As many of you are aware there are a large number of victims in the Equifax breach that was disclosed recently. Our analyst started taking a look at information in the Jigsaw Analytic Platform to see exactly what we know about the incident and we decided to share the findings. It appears as though from OSINT reporting that the attack was carried out using an Apache Struts vulnerability identified earlier this year. Because Equifax failed to patch the flaw it allowed hackers t

Just today news organizations started reporting that the FBI began looking into Uber for running a program named "Hell" to identify Lyft drivers and to find pricing from their competition. The interesting thing about this about the same time as this started hitting the media, Jigsaw Security intelligence analyst began seeing information on Uber being posted to the dark web and on cleartext paste sites such as pastebin and pastie. The information shows list of users including