Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Arctic Wolf

How To Combat AI-Enhanced Social Engineering Attacks

Nov 25, 2025 By Arctic Wolf In Arctic Wolf
Artificial intelligence (AI) has supercharged social engineering. Global management consulting firm McKinsey & Company reported a 1,200% global surge in phishing attacks since the rise of generative AI in the latter half of 2022. And it’s not just the number of attacks that’s climbing; it’s also the success rate. Arctic Wolf’s Human Risk Behavior Snapshot: 2nd Edition reveals that nearly two-thirds of IT and security leaders self-reported falling for a phishing attempt.
Read Post
Snyk

SHA1-Hulud, npm supply chain incident

Nov 24, 2025 By Brian Vermeer In Snyk
On November 24th, 2025, we identified a new supply chain attack in the npm ecosystem, referred to as SHA1-Hulud. We believe this is a second wave of the Shai-Hulud attack, which occurred in September 2025. Snyk will continue monitoring this active incident until it is resolved. Updates on this incident will be on our trust center.
Read Post

Stateless vs. Stateful: The Difference in Cyber Attacks #StatefulAttack #businesslogic #apisecurity

Nov 20, 2025 By Wallarm In Wallarm
The Hacker is Having a Conversation with Your API. There are two kinds of attacks you MUST understand: Stateless (Brute Force): One-and-done, instant gratification. Think SQL Injection. Stateful (Sophisticated): A persistent conversation over time. This is the signature of Business Logic Abuse. Why does this matter? Stateful attacks are executed by sophisticated threat actors who have done their due diligence on your architecture. You must evolve your defenses to monitor the entire session, not just single requests!
View Video
safeaeon

How AI-Driven Attacks Are Putting Gmail Security At Risk

Nov 20, 2025 By SafeAeon Inc. In SafeAeon
Gmail has always been a common target for cybercriminals, and with the arrival of advanced AI tools, the threat level has increased significantly. Now, attackers no longer rely on generic phishing emails or scam methods. They are using AI to create convincing messages and imitate real support agents to make attacks look more genuine. This change in attack patterns has made Gmail users more vulnerable because they can’t differentiate between real and fake messages.
Read Post

Multimodal Attacks and Model Drift: The Future of AI Exploitation

Nov 20, 2025 By A10 Networks In A10 Networks
Multimodal Attacks and Model Drift: The Future of AI Exploitation A10 security experts Jamison Utter, Diptanshu Purwar, and Madhav Aggarwal discuss the critical vulnerabilities emerging from multimodal AI agents (systems that perceive, decide, and act) and the absolute need for security mechanisms external to the Large Language Model (LLM) itself. The experts dive into why traditional security is failing and what the next evolution of defense must look like.
View Video

The MemcycoFM Show: Ep 18 - SOC Defense Against Credential Replay Attacks

Nov 19, 2025 By Memcyco In Memcyco
In a recent blog post from @Memcyco , we discussed how credential replay remains one of the most efficient ways attackers turn stolen usernames, passwords, or tokens into real account access. Verizon’s 2024 DBIR shows that over 40% of breaches involve stolen credentials, underscoring the durability of this tactic. Even strong authentication is not immune. Techniques like pass-the-cookie and adversary-in-the-middle phishing allow attackers to replay tokens and sidestep MFA. Remote-access scams add another layer, handing fraudsters direct control of devices and sessions.
View Video
CrowdStrike

Defeating BLOCKADE SPIDER: How CrowdStrike Stops Cross-Domain Attacks

Nov 18, 2025 By Chris Prall In CrowdStrike
Cross-domain attacks exemplify adversaries’ drive for speed and stealth. In these attacks, threat actors navigate multiple domains such as endpoint, cloud, and identity systems to maximize their reach and impact. Their goal is to exploit the weaknesses in organizations’ fast-growing and complex environments.
Read Post
safeaeon

What is a Salami Attack in Cyber Security? How to Detect and Prevent this Attack?

Nov 18, 2025 By SafeAeon Inc. In SafeAeon
A cyberattack is a malicious and intentional attempt by an individual or organization to compromise the information system of another individual or organization. Attackers use different methods to gain unauthorized access to the victim’s system and steal sensitive data. One of the most innovative types of cyberattacks is known as a ‘Salami attack’. In this attack, criminals steal small amounts of data and funds from multiple accounts over time without being detected.
Read Post

Hacked Architecture, Not Code: What is a Business Logic Attack? #businesslogic #cybersecurity

Nov 18, 2025 By Wallarm In Wallarm
Why do hackers ignore your firewalls and clean code? Because they exploit your business logic and application architecture. A Business Logic Attack (BLA) is a sophisticated manipulation that uses your own system's design against you. Learn the key difference between code flaws and architectural exploits.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.