While the Kayesa ransomware attack was still in its nascent stages of infection, Red Canary’s intelligence team had already uncovered a pair of suspicious registry key modifications that we had previously associated with REvil’s ransomware of choice. But what was it that tipped us off? In Part 2 of this webinar series, you’ll learn how our team performs tactical and operational intelligence to expedite analysis, improve detection engineering, and inform decision makers. Further, we’ll examine how security teams can apply cyber threat intelligence during an active incident to gain critical context that can be applied across other security operations functions.