General
October 20, 2025

Incident Response deep dive topics

By venkat

We continuously document here various topics which will make the defenders prepared for handling a cyber incident.

  • Importance of time during incident response – https://blog.talosintelligence.com/talos-ir-ransomware-engagements-and-the-significance-of-timeliness-in-incident-response/
  • Automation of VHDX Investigations – https://labs.infoguard.ch/posts/automation_of_vhdx_investigations/
  • Technical blog by Stephan Berger (@malmoeb) – https://dfir.ch/ – A great thanks to Stephan sir
  • Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors – https://cloud.google.com/blog/topics/threat-intelligence/brickstorm-espionage-campaign?hl=en
  • HP wolf security report – https://threatresearch.ext.hp.com/wp-content/uploads/2025/09/HP_Wolf_Security_Threat_Insights_Report_September_2025.pdf
  • https://threat-map.greynoise.io/

About The Author

Venkat is founder of FlexibleIR. He brings 20 years of experience in building tools and products at Sun Microsystems, Intel, Novell, HP, Yahoo,Tesco and startups. He has developed test suites and frameworks for post silicon validation of the Xeon processor family (Fuzzing). He has worked deeply on UFS files system at SUN Microsystem. Was a security paranoid at Yahoo.