Black Hills Information Security

BHIS | #InfoSec Webcast - Available Now! Your 5 Year Plan into InfoSec w/ @strandjs Recorded: 8/9/2017 Watch: blackhillsinfosec.com/webcast-5-year…

**NEW** BHIS | Blog Take a look at this real-world account of how insecure databases and an AI chatbot left customer data exposed and the lessons that organizations, and those that defend them, can learn from it. Lessons From A Chatbot Incident: When AI Becomes a Data Liability by: Jeremiah Fowler Published: 03/25/2026 Learn more: blackhillsinfosec.com/lessons-from-a…

Let's look at what's happening with Antisyphon Training and Black Hills Information Security! SOC Summit 2026 March 25, 2026 10:00 AM EDT Register: antisyphontraining.com/event/soc-summ… Security Operations Centers are where defenders grow, pressure is real, and impact matters. Take your knowledge further with the special live training - #summit-training" target="_blank" rel="nofollow noopener">antisyphontraining.com/event/soc-summ… BHIS: The next BHIS webcast is on Learning to Trust AI Agents with Automation w/ Ethan Robish and Derek Banks March 26, 2026 1:00 PM EDT Register: events.zoom.us/ev/Ajoipjn-LK3…

Custom detection rules mean nothing if you're not validating them continuously. Our Atomic Red Team module is built into the platform and documented publicly, no hidden features, no black box. For John Strand, Owner of @BHinfoSecurity, that level of transparency was the deciding factor. The BHIS SOC treats validation as an ongoing practice, not a one-time check. They run a lot of custom rules and need to know those rules are firing properly on a continuous basis, not just at the next pen test or the next incident. Having Atomic Red Team built directly into the platform makes that possible. Since making the switch, BHIS can now handle roughly twice the customer load with the same staff. Watch the full interview: lc.pub/3NmSIIz #cybersecurity #infosec #mssp

Join us for this week's infosec-news stories with the Black Hills Infosec team live at 4:30pm ET on Mondays -- youtube.com/watch?v=ImDdWI…

Post-incident lessons are very valuable—and often very, very expensive! Patterson C. joined us last week to show us we don’t have to wait to make meaningful improvements by giving us a Pre-Incident Checklist. 10 low-effort, high-impact lessons every business should review and fix before a cybersecurity incident! Watch the full webcast & find the slidedeck here: youtube.com/live/jYaMkv56x…

THE FUTURE IS ****** is on the shelves of 600+ comic shops around the world. You can get caught up on the series at your local comic shop or here -- spearphish-general-store.myshopify.com/collections/re… We're telling stories about how tech will be misused, abused, and hacked... so we can fix now.

"Cyber threats, which encompass a wide range of malicious activities targeting information systems, pose significant risks to the confidentiality, integrity, and availability of data." Read more: blackhillsinfosec.com/common-cyber-t… Common Cyber Threats by: Dieter Smith, Wade Wells, Blake Regan, & Matthew Thomas Published (in blog format): 1/21/2025

Issue #8 of THE FUTURE IS ****** from @REKCAHComics kicks off a brand-new story with a BAM! BAM! BAM! BAM! BAM! Get a physical copy at -- spearphish-general-store.myshopify.com/collections/re…

Issue #12 of 60 of our sci-fi indie comics series -- THE FUTURE IS ****** -- from @REKCAHComics is available in 600+ comic shops. The LULZ story continues! Get caught up on 1-10: spearphish-general-store.myshopify.com/collections/re…

**NEW** BHIS | Blog Learn how to transform boring, meeting-style security tabletop exercises into engaging real-world scenario simulations! How to Lead Effective Tabletops by: Glen Sorenson Published: 03/18/2026 Learn more: blackhillsinfosec.com/how-to-lead-ef…

If I told you there was a digital forensics and IR platform that gives security teams deep visibility into Windows, macOS, and Linux endpoints, would you believe me? What if I said it’s open source, lightweight, scalable, and designed for flexible investigations? Welcome to Velociraptor 101! Download Rapid7's Velociraptor DFIR - github.com/Velocidex/velo… Velociraptor 101: Rapid Windows Endpoint Investigations with Velociraptor & KAPE - youtube.com/watch?v=rqEjxZ… AASLR: Playing with Velociraptor! - youtube.com/watch?v=sLSaYH…

Wise words from our intern @strandjs

Running a multi-tool SOC as an MSSP means constantly solving for integration. Every best-of-breed product your team trusts has to communicate, correlate, and feed into a single view of the customer environment. For @BHinfoSecurity, that centralized layer is LimaCharlie. LimaCharlie pulls telemetry from across their stack and, for BHIS, the integration experience has been a dream. Since making the switch, BHIS cut their cost per endpoint by more than half and can now handle roughly twice the customer load with the same staff. Watch the full interview: lc.pub/4doQUsU #cybersecurity #infosec #soc #mssp

Hey folks! Let's look at what's happening with @Antisy_Training Black Hills Information Security! Anti-Cast: The next Anti-Cast is on Securing the Cloud in the Age of AI with Andrew Krug March 18 @ 12:00 pm – 1:00 pm EDT Register: antisyphontraining.com/event/anti-cas… BHIS: “The next BHIS webcast is on Do it, do it NOW! - A Pre-Incident Checklist w/ Patterson March 19, 2026 1:00 PM EDT Register: events.zoom.us/ev/ApfsWW2Dn3n… Post-incident “lessons learned” are extremely valuable and very, very expensive! But you don’t have to wait until “right of boom” to make meaningful improvements to your cybersecurity resilience! Join us for a free one-hour webcast with Patterson Cake from Black Hills Information Security: Do it, do it NOW!! A Pre-Incident Checklist. You’ll learn the top 10 low-effort, high-impact lessons every business should review and fix before a cybersecurity incident. SOC Summit: March 25 @ 10:00 am – 4:00 pm EDT Register: antisyphontraining.com/event/soc-summ… Live Training March 26 – April 10 #summit-training" target="_blank" rel="nofollow noopener">antisyphontraining.com/event/soc-summ…

Join us for this week's infosec-news stories with the Black Hills Infosec team live at 4:30pm ET on Mondays -- youtube.com/watch?v=HKJ8JU…

"[...] as we move into 2026, I’ve written down some of my biggest insights on how to gather bids, determine the quality of testing firms, and get the best pricing for your engagement." Read more: blackhillsinfosec.com/finding-the-ri… Finding the Right Penetration Testing Company By: Melisa Wachs Published: 01/14/2026

Teams that lack incident command structure often stumble when a real breach occurs. Don’t leave your response to chance. Develop leadership skills that help you take control, maintain clarity, and direct effective action with Gerard in this class. antisyphontraining.com/product/cybers…

**NEW** BHIS | Blog Learn what GRC really is, how risk is measured and managed, and how to start a career driving security strategy and outcomes. Understanding GRC: How to Navigate Risks and Compliance Standards by: Sean Reilly Published: 03/11/2026 Learn more: blackhillsinfosec.com/understanding-…

"All together, this tool allows domain admins to set up deceptive traps in their Active Directory environment, baiting adversaries into revealing themselves." Read more: blackhillsinfosec.com/deceptive-audi… Deceptive-Auditing: An Active Directory Honeypots Tool By: Sean Minnick Published: 1/7/2026

Shoutout to the folks who break into systems for the right reasons and then write a 12-page report about it. We see you. You’re awesome!