Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SecurityScorecard

Safeguarding Against Subdomain Takeover

May 8, 2025 By SecurityScorecard In SecurityScorecard
Subdomain takeovers are a growing threat in today’s cloud-first ecosystem. As organizations rely on third-party services, continuously launch digital assets, and manage sprawling DNS configurations, they often leave behind vulnerable subdomains ripe for exploitation. In this article, we explore subdomain takeovers, why they pose such a serious risk, and most importantly, how to prevent them before threat actors strike.
Read Post
spycloud

SpyCloud Analysis Reveals 94% of Fortune 50 Companies Have Employee Data Exposed in Phishing Attacks

May 7, 2025 By SpyCloud
SpyCloud, the leading identity threat protection company, today released an analysis of nearly 6 million phished data records recaptured from the criminal underground over the last six months. Phishing attacks have been growing in scale and sophistication, and SpyCloud's research reveals that cybercriminals are increasingly targeting high-value identity data that can be used for follow-on attacks like ransomware, account takeover, and fraud.
Read Post
the cyber helpline

What to Do if You Are Affected by a Retailer Cyberattack

May 7, 2025 By The Cyber Helpline In The Cyber Helpline
In April and May 2025, several prominent UK retailers including Marks & Spencer (M&S), Co-op, and Harrods experienced significant cyberattacks. At the time of writing we have not had confirmation of these attacks but consider them to be a Ransomware attack. These incidents are disrupting services, compromising customer data, and highlight vulnerabilities in retail cybersecurity. This guide aims to help you as a consumer take the steps you can take to protect yourself.
Read Post
aikido

RATatouille: A Malicious Recipe Hidden in rand-user-agent (Supply Chain Compromise)

May 6, 2025 By Charlie Eriksen In Aikido
On 5 May, 16:00 GMT+0, our automated malware analysis pipeline detected a suspicious package released, rand-user-agent@1.0.110. It detected unusual code in the package, and it wasn’t wrong. It detected signs of a supply chain attack against this legitimate package, which has about ~45.000 weekly downloads.
Read Post
cultureai

Scattered Spider and DragonForce: A Case Study in Human-Centric Cyber Threats

May 6, 2025 By Oliver Simonnet In CultureAI
In April 2025, Marks & Spencer, the Co-op Group, and Harrods were all targeted by cyber-attacks that caused disruption across their services. Although attribution is still being confirmed, indicators strongly link these attacks to Scattered Spider, a group known for aggressive, human-centric tactics and high-profile breaches. This post is not an incident breakdown for each retailer.
Read Post
Top 4 Cybersecurity Threats Facing Businesses Today

Top 4 Cybersecurity Threats Facing Businesses Today

May 6, 2025 By SecuritySenses In SecuritySenses
Keeping your business data safe is more important than ever. As more companies use technology and remote work grows, the risk of cybersecurity threats increases. No matter the size or small business can be a target. To stay safe, businesses need strong cybersecurity plans and must know what threats to watch out for. In this post, we'll look at the top cyber threats businesses face today and how to guard against them. Let's get started and learn how to protect your business from these risks.
Read Post
Firmware's Blind Spot:7Ways HardwareComponentShortages Open NewAttack Paths

Firmware's Blind Spot:7Ways HardwareComponentShortages Open NewAttack Paths

May 5, 2025 By SecuritySenses In SecuritySenses
When a nextgeneration firewall ships with a Secure Boot bypass baked into its firmware, it is easy to assume the culprit lies in sloppy software. Yet the root cause often hides deeper: a lastminute swap of an outofstock component that the firmware team never fully audited. In 2023 alone, Resilinc's EventWatch AI recorded 7 422 hightech supplychain disruption alerts-over half severe enough to trigger "WarRoom" responses (Resilinc, 2023). These shortages force engineers to scour greymarket brokers, accept pincompatible "dropins," or resurrect endoflife (EoL) parts just to keep production lines moving.
Read Post
memcyco

Pre-emptive Account Takeover Detection: 5 Steps to Expose Scammers Early

May 2, 2025 By Sheena Kretzmer In Memcyco
Modern security leaders know that account takeover detection (ATO) isn’t just about spotting a bad login. ATO attacks are part of a broader scam lifecycle – starting with phishing or impersonation, escalating into credential harvesting, and ending with unauthorized access. To stop ATOs effectively, security teams need visibility into this full progression, not just the login attempt. That’s why a true ATO prevention strategy starts long before a password is entered.
Read Post
WatchGuard

Weeding Out Cyber Threats: How to Detect and Stop Common Attacks

May 1, 2025 By Andrew Kerr In WatchGuard
When necessary, you water it, monitor it, and weed out what doesn’t belong before it spreads. The same principle applies to cybersecurity. In today’s digital landscape, cyber threats evolve rapidly. From phishing and privilege escalation to rogue access and lateral movement, attacks often take root well before they’re discovered. That’s why detection and response are no longer optional ‒ essential for resilience.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.