Receive occasional news and new articles from Cosive.

Thanks for subscribing to our newsletter
Oops! Something went wrong
Prue Owen
Prue Owen
Project Coordinator
February 21, 2024

What Cosive's ME Day Means to Me

Hi, I’m Prue Owen - Project Coordinator at Cosive. I know you don't hear from me much, but this one is important to me... Cosive ME Day Cosive gives all permanent staff 1 paid self-care day per month in addition to the usual 4 weeks of annual leave (that is: 12 additional days of leave per year to do things you find fulfilling). 3 small words that can mean so much.

Kayne Naughton
Kayne Naughton
Co-founder & Contract Principal
Tash Postolovski
Tash Postolovski
Technical Marketing Manager
February 21, 2024

What Goes Wrong in Threat Intel Programs

In this interview Cosive’s Managing Director Kayne Naughton shares what he’s learned about threat intelligence programs throughout his career in vulnerability development, SysAdmin and working on threat intel in the financial sector.

Shanna Daly
Shanna Daly
Principal Consultant
Tash Postolovski
Tash Postolovski
Technical Marketing Manager
February 21, 2024

Meet Shanna Daly, Principal Consultant at Cosive

Shanna Daly (she/her) is the newest member of the Cosive team, bringing with her over two decades of experience in information security, digital forensics, and incident response.

Chris Horsley
Chris Horsley
Chief Technology Officer
Tash Postolovski
Tash Postolovski
Technical Marketing Manager
February 21, 2024

Automating Anti Phishing Canary Credentials at Scale

In part 1 of our mini-series on canary credentials, we talked about what canary credentials are, why to use them, and how to use them well. It’s highly recommended to read part 1 first. So, let’s assume you’ve had some early success in manually using canary credentials in limited numbers - great! Now you’re looking to take your next steps. Arguably, the most powerful way to land a blow against phishing attackers and deter future attacks is using canary credentials at scale via automation. Here’s why.

Chris Horsley
Chris Horsley
Chief Technology Officer
Tash Postolovski
Tash Postolovski
Technical Marketing Manager
February 21, 2024

How to Disrupt Phishing with Anti Phishing Canary Credentials

The traditional response to a phishing attack is to issue a take-down request and wait for the site to (possibly) be yanked offline. Take-downs, while necessary, just don’t hit phishers where it hurts - they still harvest plenty of stolen credentials while the site is up. In light of this, security teams are looking for new, more effective ways to fight back against phishers. Rather than be reactive, we want to disrupt phishers’ operations. A strategy rapidly gaining in popularity is the use of credential poisoning techniques, utilising what are referred to as ‘canary credentials’.