This white paper explores advanced threat detections at enterprise scale, focusing on techniques to scale organizational growth as well as the explosion in data available to security analysts today.
This white paper explores how this context further manifests into the primary ‘forces’ that are driving the need to change the approach to threat management and SOC operations.
While reviewing a 2015 report of a Winnti intrusion at a Vietnamese gaming company, Chronicle identified a small cluster of Winnti samples designed specifically for Linux. This white paper is a technical analysis of this variant.