UnknownCyber logo


UC Threat Intelligence

unknowncyber hunt for volt typhoon

UnknownCyber Hunt for Volt Typhoon

UnknownCyber Hunt for Volt Typhoon (Proactive Hunt-MDR) enables your team to be proactive and remove unknown Volt-Typhoon tools from critical infrastructure.

CISA, NSA, and FBI have determined that Volt-Typhoon, a PRC State-Sponsored Actor, has successfully infiltrated U.S. critical infrastructure.

Compromises linked to Volt-Typhoon have targeted Communications, Energy, Transportation Systems, and Water and Wastewater Systems sector organizations’ IT networks. Some victims are smaller organizations with limited cybersecurity capabilities that provide critical services to larger organizations or key geographic locations.

Many organizations lack a threat hunting capability and the necessary resources to find and remediate threats that have penetrated their other solutions. Lack of personnel and specialized skillsets make it difficult for network defenders to discern legitimate behavior from malicious behavior, conduct analytics, and perform proactive hunting.

UnknownCyber Hunt for Volt Typhoon fills this gap, providing security teams custom hunt signatures for several Volt-Typhoon tools. These signatures are created from the actual bytecode of the tools used by Volt-Typhoon. Enabled by UnknownCyber’s patented method that hunts through bytecode; UnknownCyber hunt for Volt-Typhoon provides an information advantage in detection and hunt where other solutions fail.

Critical Infrastructure leaders should ask their security teams what proactive hunting measures have been employed to proactively detect Volt-Typhoon.

Conventional IOCs contained in the CISA advisory are insufficient to fully eradicate Volt-Typhoon. The CISA recommendations for “DETECTION/ HUNT” specify the need for a proactive strategy to mitigate cyber threats which enables proactive hunting. This echoes NSA’s guidance to “continuously hunt for network Intrusions.”

UnknownCyber Hunt for Volt Typhoon arms you team with an easy to deploy proactive hunt capability that is made affordable through automation and AI.

Please ask about our State and Local Cybersecurity Grant Program Resources to help you access federal funding to protect our critical infrastructure. Hunt today!

UnknownCyber Hunt-On Demand

UnknownCyber Hunt-on-Demand

UnknownCyber Hunt-on-Demand (Proactive Hunt-MDR) enables your team to be proactive, hunt, and remove specific undetected threats by name or industry sector from critical infrastructure.

Many organizations lack a threat hunting capability and the necessary resources to find and remediate threats that have penetrated their other solutions. Lack of personnel and specialized skillsets make it difficult for network defenders to discern legitimate behavior from malicious behavior, conduct analytics, and perform proactive hunting.

UnknownCyber Hunt-on-Demand fills this gap by providing security teams custom hunt signatures for a specific threat or the top threats we are observing in a particular sector. These signatures are created from the actual bytecode of the tools used by advanced threat actors. Enabled by UnknownCyber’s method of creating rules that hunt bytecode; UnknownCyber Hunt-on-Demand provides an information advantage in detection other security tools cannot.

Critical Infrastructure leaders should ask their security teams what proactive hunting measures have been employed to mitigate threats that have already evaded their other security tools.

Make your organization proactive with UnknownCyber and easily implement a strategy that enables analytics and proactive hunting as recommended in best practices by CISA and industry leaders.

UnknownCyber Hunt-on-Demand mitigates unacceptable cyber risk by affording your team an affordable option for your team to easily implement a proactive strategy.

Please ask about our State and Local Cybersecurity Grant Program Resources to help you access federal funding to protect our critical infrastructure. Hunt today!

UnknownCyber Deep-90

UnknownCyber Deep-90

UnknownCyber Deep-90 (Proactive Hunt-MDR Subscription)

Unknown Cyber Deep-90 makes it affordable to follow NSA guidance and “continuously hunt for network intrusions” in your critical infrastructure by automating highly trained hunt talent at scale through AI! With our comprehensive 90 day signature catalog curated by our AI powered Threat Library and 418 Intelligence, you can hunt your infrastructure for the newest and next threat variants so boards can demonstrate CISA recommended best practices and implement strategy that is truly proactive.

Hashes and Behavior are pro-tanto but not proactive!

“Automated detection methods, such as Intrusion Detection Systems (IDS), Endpoint Detection and Response (EDR) capabilities, and Security Information and Event Management (SIEM) system alerts are useful, but they cannot detect all breaches. Organizations that continuously hunt for anomalous network activity assume that malicious actors have by-passed automated detection and already reside in the network.”

Moving from People to Automation:

UnknownCyber’s Deep-90 enables your team to be proactive, hunt, and remove undetected threat actors from critical infrastructure.

Problem:

Many organizations lack a threat hunting capability and the necessary resources to find and remediate threats that have penetrated their other solutions. Lack of personnel and specialized skillsets make it difficult for network defenders to discern legitimate behavior from malicious behavior, conduct analytics, and perform proactive hunting.

Solution:

UnknownCyber Deep-90 fills this gap by providing security teams a collection of custom hunt signatures for the top threat being experienced in industry and continuous signature updates to remain proactive to new variants every day! UnknownCyber hunt signatures are created from the actual bytecode of the tools used by advanced threat actors. Enabled by UnknownCyber’s DoD developed method of creating rules that hunt bytecode; Deep 90 provides an information advantage in detection other security tools cannot.

Lead with Proactive Strategy:

Critical Infrastructure leaders should ask what proactive hunting measures have been employed to mitigate threats that have already evaded their other security tools.

Make your organization proactive with UnknownCyber and easily implement a strategy that enables analytics and proactive hunting best practices used by government and industry leaders! UnknownCyber’s Deep-90 mitigates unacceptable cyber risk by enabling your team to easily be proactive and get ahead of the adversary.

Please ask about our State and Local Cybersecurity Grant Program Resources to help you access federal funding to protect our Critical Infrastructure. Hunt today!