Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Threat Intelligence

Featured Post
ThreatQuotient

Fortifying Financial Services Cybersecurity with Threat Intelligence and Cybersecurity Automation

Feb 26, 2025 By Chris Jacob, VP, Global Field Operations In ThreatQuotient
The World Economic Forum's Global Cybersecurity Outlook 2025 Insight Report paints a bleak picture of what the year ahead holds for technology security teams worldwide. However, some industries are likely to be worse off than others. The financial sector, for example, is an attractive target for cyber-attacks, as confirmed by Statista which states that the average cost of a data breach in this industry in 2024 was approximately $6.08 million, compared to $4.88 for the overall average cost of a data breach across all industries.
Read Post

Security Without Tears: Making Threat Intelligence Actionable - Fireside Chat

Feb 26, 2025 By UpGuard In UpGuard
Dr. Kane Tomlin, CIO at Mississippi State Department of Health shares his innovative ‘Security Without Tears’ approach. Learn how he reduces complexity, prioritizes threats, and implements practical, citizen-focused security solutions at MSDH.
View Video
cyjax

The Use Of Artificial Intelligence In Threat Intelligence

Feb 25, 2025 By Shail Yadav In CYJAX
Artificial Intelligence (AI) is a double-edged sword in cybersecurity, empowering both defenders and attackers. AI-driven security systems are often used to detect threats in real-time, analysing large datasets for anomalies, and automating responses to cyberattacks. However, cybercriminals are also leveraging AI to create advanced malware, automate phishing attacks, and evade traditional defenses.
Read Post
ThreatQuotient

Cybersecurity Automation Adoption: Hype vs. Reality

Feb 25, 2025 By Julia Weifenbach In ThreatQuotient
Cybersecurity automation has followed a path familiar to many emerging technologies: a cycle of inflated expectations, hard realities, and eventual refinement. Gartner’s “hype cycle” provides a useful framework for understanding this journey—initial enthusiasm and lofty expectations give way to challenges and disillusionment before practical, high-value use cases emerge.
Read Post

February 24, 2025 Cyber Threat Intelligence Briefing

Feb 24, 2025 By Kroll In Kroll
February 24, 2025 Cyber Threat Intelligence Briefing This week’s briefing covers: KTA080 (CL0P) Update CL0P has again updated their data leak site with a new list of redacted victim organizations possibly linked to the Cleo vulnerability. The list contains company names beginning with the letters E-H. This follows the current pattern the group has established with releasing redacted names to then later slowly start releasing the actual entity and published data associated with it if the victim organization has not reached out to CL0P.
View Video
centripetal

Security Bulletin: PAN-OS Authentication Bypass Vulnerability

Feb 20, 2025 By Lauren Farrell In Centripetal
CVE-2025-0108 is a high-severity authentication bypass vulnerability affecting Palo Alto’s PAN-OS, the operating system for their next-generation firewalls. This flaw allows an unauthenticated attacker with network access to the PAN-OS management web interface to bypass authentication controls and execute restricted PHP scripts.
Read Post
cyjax

A Guide to Working in Threat Intelligence

Feb 19, 2025 By Shail Yadav In CYJAX
According to Gartner Research and McMillan (2003), “Threat intelligence is evidence-based knowledge, including context, mechanisms, indicators, implications, and actionable advice, about an existing or emerging hazard to assets that can inform decisions on how to respond.” Threat intelligence involves analysing data to predict and prevent cyber threats, allowing organisations to identify risks early and implement proactive defences.
Read Post
centripetal

Security Bulletin: Rha-Rha-Rhadamanthys Information Stealer

Feb 18, 2025 By Lauren Farrell In Centripetal
The origin of the word “Rhadamanthys”, goes back to Greek mythology where he was a legendary figure who ruled as king of Crete. Born to Zeus and Europa, he held the status of demigod and was renowned for his wisdom. Rhadamanthys Stealer is a sophisticated information stealer written in C++ that employs multiple evasion techniques. The malware utilizes a custom packer for code obfuscation and incorporates anti-VM and anti-debugging mechanisms to prevent analysis.
Read Post

February 18, 2025 Cyber Threat Intelligence Briefing

Feb 18, 2025 By Kroll In Kroll
February 18, 2025 Cyber Threat Intelligence Briefing This week’s briefing covers: CL0P Update CL0P updated their data leak site with a new victim list of approximately 43 organizations. The organizations are likely from the previous redacted list containing company names from C-E and are possibly associated with the Cleo zero-day vulnerability.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.