Blue Team

Data Loss Prevention What is Data Loss Prevention? Data Loss Prevention (DLP) is a strategy for preventing data exfiltration and destruction. Examples of data include financial information, customer data, trade secrets, and other confidential information that could harm a company or its customers if exposed. Common causes of data loss include: Human error- accidental deletion of sensitive files, misconfiguring security settings, or being the victim of a social engineering attack. Insider threats- unauthorized saving and distribution of sensitive files by those with access to corporate systems....

Introduction This article contains information that I have gathered as I’ve done research on incident response. This aims to be actionable for red teamers to know what to look out for and for blue teamers to aid in the creation of an effective incident response plan. Key Roles the CISO ensures cyberattacks are promptly investigated. coordinating efforts of incident response during a cyberattack. investigating which data may have been stolen....