2022 Unit 42's Brute Ratel C4 Research - Jen Miller-Osborn, Palo Alto Networks
Techstrong TV Interviews
•
01-Jan-1900
Jen Miller-Osborn, Deputy Director of Threat Intelligence, Unit 42 at Palo Alto Networks joins Alan Shimmel to discuss a recent Unit 42 blog post from July about Brute Ratel C4, a penetration testing and adversary emulation framework. This tool is similar to Cobalt Strike, a common pentesting framework that is known to be leveraged by ransomware and APT actors (ex. Solarwinds). Brute Ratel C4 is specifically engineered to evade modern Endpoint Detection and Response (EDR) and AntiVirus (AV) capabilities. This Unit 42 research is significant in that it identifies a capability that is largely undetectable across most cybersecurity vendors with a growing user base that is now being adopted for malicious purposes by APTs. Unit 42 has shared its findings widely with government and industry partners around the globe, providing technical indicators that will help organizations identify activity from this tool. Unit 42 has also encouraged security vendors to create protections to detect related activity.
Up Next in Techstrong TV Interviews
-
Zero-Day Vulnerabilities, Steve Wilso...
Steve Wilson, chief product officer for Contrast Security, explains what it really takes to cope with zero-day vulnerabilities.
-
Application Security Debt - Jeff Mart...
Jeff Martin, vice president of product for Mend, explains why the amount of application security debt piling up is going to end badly.
-
Catherine McGarvey and Chris Clark - ...
Catherine McGarvey and Chris Clark from the Cloud Foundry Foundation (CFF) explain how an open source platform-as-a-service (PaaS) environment running atop Kubernetes will provide a much-needed boost to cloud/native application developer productivity while also streamlining DevOps workflows.
Wan...
