Magnet Axiom Cyber 8.5: Collect and preserve cloud data

We’re excited to announce the release of Magnet Axiom Cyber 8.5, which includes new features and improvements such as:

  • The ability to collect and preserve cloud data without automatically processing it
  • TTPs with MITRE ATT&CK® framework integration can now be identified when automating workflows using Magnet Automate
  • Magnet One integration

We’ve also updated and added to our artifact support (additional details are at the end of this blog.)

Upgrade to Axiom Cyber 8.5 within the Axiom Cyber interface or through the Customer Portal

Haven’t tried Axiom Cyber yet? Request your free trial here.

Collect and preserve cloud data without automatically processing it

We’ve heard your feedback and we’re excited to announce the ability to collect and preserve cloud data without automatically processing it. This was possible with other data sources acquired using Axiom Cyber, such as remote endpoint collections, and is now part of the workflow for cloud acquisitions!

This is especially important in situations where you may not want or be able to process the data, for example when performing the collection as part of an employee exit or legal hold.

To learn more about the benefits of this feature, especially when using Axiom Cyber to support eDiscovery, check out the blog “Preserve now, process later: Safeguarding sensitive cloud data for HR investigations and eDiscovery.

Screenshot of cloud processing option selection screen

Identify TTPs with MITRE ATT&CK framework integration, now available when automating workflows using Magnet Automate

 

MITRE ATT&CK Logo

As of Axiom Cyber 8.4, the MITRE ATT&CK framework was integrated to quickly identify TTPs, further aligning incident response and digital forensics teams for more effective collaboration.

One of the key benefits is in utilizing a common language, facilitating clear and consistent communication among the SOC, IR, threat intel and other security teams, and stakeholders. When everyone is on the same page regarding the definitions and descriptions of adversary actions, it reduces misunderstandings and improves collaboration.

In this release, we’ve added the ability to perform MITRE ATT&CK scans as part of automated workflows in Magnet Automate using custom scripting. If you want to learn more about Magnet Automate and the benefits of automating your DFIR workflows, download the guide “Modernizing forensic workflows with Magnet Automate”.

To learn more about all of the benefits of the ATT&CK framework and this integration, read the blog post, “Bridging the gap between DF & IR:  MITRE ATT&CK ® framework integration in Magnet Axiom Cyber.”

Also, don’t miss our third episode of Cyber Unpacked: Exploring Enterprise DFIR where Doug Metz, Senior Security Forensics Specialist, shares an in-depth look at the importance of MITRE ATT&CK mapping and how to use the new integration in Axiom Cyber.

Want to see it in action? Try this quick interactive demo:

Magnet One integration

With the release of Magnet One, each instance of Axiom Cyber in your organization can be linked to automatically synchronize Magnet processing details with Magnet One cases. To learn more about Magnet One and how it integrated with Axiom Cyber and Verakey, read the blog post “Integrating Magnet Graykey and Magnet Axiom with Magnet One for faster mobile investigations.”

New and updated artifacts

We’re continually adding and updating artifacts based on the applications you’re coming across in your investigations. With this release, we’re continuing to improve our Linux log analysis capabilities.

New artifacts

  • Facebook Messenger End-to-End Encrypted Chat Attachments (iOS)
  • Google Chrome Local Storage (Computer)
  • Btmp logs (Linux)
  • Google Japanese Input Method (Android)
  • Samsung Places (Android)

Updated artifacts

  • iOS Wi-Fi Profiles (iOS)
  • Instagram Warrant Return (Cloud)
  • Google Bookmarks (Computer)
  • IME Suggestions – Simeji Cloud (Android)
  • Instagram Account Actions (Warrant Return)
  • LINE Messages (Android)
  • Signal (Android)
  • SMS/MMS/iMessage (iOS)
  • UserAssist (Computer)

Get Magnet Axiom Cyber 8.5 today!  

Download Axiom Cyber 8.5 over at the Customer Portal or upgrade within the application. 

Haven’t tried Axiom Cyber yet? Request your free trial here.

If you conduct digital investigations for law enforcement, check out the new features in Magnet Axiom 8.5 here.

The post Magnet Axiom Cyber 8.5: Collect and preserve cloud data appeared first on Magnet Forensics.

Share:

More Posts

Enterprise forensics: Why scalable solutions matter

Organizations in the private sector face significant complexity when performing enterprise forensics investigations, whether it’s in support of incident response, internal investigation, or litigation/eDiscovery. The volume of data, the sheer

FCC Grants SpaceX SCS Authority

On November 26, 2024, the Space Bureau released an Order and Authorization granting in part and deferring in part, with conditions, several applications from Space Exploration Holdings, LLC (“SpaceX”), including