Threat Management

Threat Intelligence

Black Basta-like Microsoft Teams phishing leads to novel backdoor

A new PowerShell backdoor and persistence technique that hijacks TypeLib were discovered.

(Credit: Araki Illustrations – stock.adobe.com)

Identity

Amazon EC2 instance metadata targeted in SSRF attacks

EC2 instance metadata can include sensitive information such as IAM role credentials.

Government Regulations

Trump orders probe of ex-CISA chief Krebs over 2020 election dispute

Krebs is on record saying the 2020 election “was the most secure in American history.”

Security Operations

New research reveals flaws in security team performance metrics

IDC's survey of 900 security leaders reveals widespread use of volume-based metrics for team performance. How do we shift from measuring activity to measuring true impact?

Cyber Soldiers in Digital Warfare: A futuristic depiction of a cybernetic army in active combat. Soldiers, rendered in digital patterns, brandish weapons within a data-rich battlefield environment.

AI/ML

AI-driven state-sponsored cyberattacks worry security professionals

Cyberwarfare is no longer a distant threat as tensions escalate between nations worldwide.

Ransomware

RansomHub affiliates scramble amid apparent internal conflict

Several RansomHub affiliate chat portals reportedly went offline last week.

Ransomware

Scattered Spider persists with use of Spectre RAT, new phishing kit

New IoCs and free defense tools for Scattered Spider were made available by Silent Push.

Businessman holding mobile phone which on the top of phone has upload and download cloud space computer.Technology and data information transfer concept.

Cloud Security

How to plan your cloud migration with security in mind

To protect your cloud-based assets, your organization must consider security and compliance when planning your cloud migration journey.

Ransomware

Neptune RAT spreads across GitHub, Telegram, and YouTube

A new version of Neptune RAT is spreading rapidly across many platforms, including GitHub.

Threat Management

2025 SC Awards Finalists: Best Continuous Threat Exposure Management Solution

Continuous Threat Exposure Management (CTEM) products identify, assess and mitigate vulnerabilities in an organization's publicly accessible IT assets and services.

Perspectives

Proactive law enforcement takedowns in 2024 reshaped the cybercrime ecosystem

Expect more offensive cyber ops once Trump takes office

Election 2024: Countdown to chaos?

Briefs

Cracked cybercrime forum reemerges

Stealthier Tycoon2FA phishing kit appears as PhaaS platforms fuel SVG exploitation

Attacks with novel PowerModul implant target Russia