Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Featured Post
It's Good to Talk: Dialogue and Community are Essential to Global Cybersecurity

It's Good to Talk: Dialogue and Community are Essential to Global Cybersecurity

Feb 6, 2026 By Leon Ward, Chief Transformation Officer In Securonix
The recent World Economic Forum meeting focused on "A Spirit of Dialogue". The conference themes emphasized the role of communication and connection in overcoming challenges and driving prosperity in the years ahead.
Read Post
securonix

Analyzing Dead#Vax: Analyzing Multi-Stage VHD Delivery and Self-Parsing Batch Scripts to Deploy In-Memory Shellcode

Feb 4, 2026 By Akshay Gaikwad, Shikha Sangwan, Aaron Beardslee In Securonix
Securonix Threat Research has been tracking a stealthy malware campaign that uses an uncommon chain of VHD abuse, script-based execution, self-parsing batch logic, fileless PowerShell injections and ultimately dropping RAT. The attack leverages IPFS-hosted VHD files, extreme script obfuscation, runtime decryption, and in-memory shellcode injection into trusted Windows processes, never dropping a decrypted binary to disk.
Read Post
securonix

Preemptive Security, Governed Autonomy, and the Reality of Modern SOC Operations

Jan 27, 2026 By Simon Hunt In Securonix
Artificial intelligence is now central to every conversation about the future of security operations. Terms like autonomous, agentic, and preemptive are everywhere. Yet much of the discussion skips the harder question CISOs, SOC leaders, and boards actually care about: how AI can be applied responsibly, predictably, and at scale in real-world security operations. If we get this wrong, we do not just risk wasted investment. We risk eroding trust in the SOC itself.
Read Post
securonix

Securonix Threat Labs Monthly Intelligence Insights - December 2025

Jan 14, 2026 By Dheeraj Kumar and Nitish Singh In Securonix
The Monthly Intelligence Insights report provides a summary of top threats curated, monitored, and analyzed by Securonix Threat Labs in December 2025. The report also includes a synopsis of the threats, indicators of compromise (IoCs), tactics, techniques, and procedures (TTPs), and related tags. Each threat has a comprehensive summary from Threat Labs and search queries from the Threat Research team.
Read Post
securonix

SHADOW#REACTOR - Text-Only Staging, .NET Reactor, and In-Memory Remcos RAT Deployment

Jan 12, 2026 By Akshay Gaikwad, Shikha Sangwan, Aaron Beardslee In Securonix
The Securonix Threat Research team has analyzed a multi-stage Windows malware campaign tracked as SHADOW#REACTOR. The infection chain follows a tightly orchestrated execution path: an obfuscated VBS launcher executed via wscript.exe invokes a PowerShell downloader, which retrieves fragmented, text-based payloads from a remote host. These fragments are reconstructed into encoded loaders, decoded in memory by a .NET Reactor–protected assembly, and used to fetch and apply a remote Remcos configuration.
Read Post
Featured Post
Same Mission, Different Mindsets: CISOs and Incident Response Leaders in the Age of AI and Automation

Same Mission, Different Mindsets: CISOs and Incident Response Leaders in the Age of AI and Automation

Jan 5, 2026 By Leon Ward, Chief Transformational Officer In Securonix
When you work in cybersecurity, whether you're steering the operational team, or in a more strategic role, the mission is the same: protect the business. But when it comes to executing that mission, finding consensus on the best approach can be hard. At this pivotal point in the evolution of cybersecurity, as automation becomes table stakes and AI adoption accelerates, it is important that stakeholders are pulling in the same direction. However, recent ThreatQuotient research highlights real differences in how CISOs and Heads of IR approach the introduction of AI into cybersecurity strategy and practice.
Read Post
securonix

Analyzing PHALT#BLYX: How Fake BSODs and Trusted Build Tools Are Used to Construct a Malware Infection

Jan 5, 2026 By Shikha Sangwan, Akshay Gaikwad, Aaron Beardslee In Securonix
Securonix threat researchers have been tracking a stealthy campaign targeting the hospitality sector using click-fix social engineering, fake captcha and fake blue screen of death to trick users into pasting malicious code. It leverages a trusted MSBuid.exe tool to bypass defenses and deploys a stealthy, Russian-linked DCRat payload for full remote access and the ability to drop secondary payloads.
Read Post
Featured Post
Security Shifts in 2026: Risk Moves Beyond the CISO

Security Shifts in 2026: Risk Moves Beyond the CISO

Dec 19, 2025 By Chris Jacob, Field CISO In Securonix
In 2026, cybersecurity will shift from being seen as the security team's responsibility to being part of how the entire company operates. Every business function will share ownership of risk. Finance, engineering, product, and marketing will all have clear roles in protecting customer trust.
Read Post
securonix

Intel to Action: How Integrated Threat Intelligence Platforms Transform the Modern SOC

Dec 17, 2025 By Vanessa Sorenson In Securonix
Today’s adversaries are fast, distributed, and increasingly coordinated. Yet many SOCs remain reactively trapped in fragmented tools, endless alert queues, and growing pressure from executives to prove not just security, but resilience. It’s no longer enough to collect threat feeds or stand up a threat intel team. What’s needed is integrated intelligence—curated, contextualized, and operationalized—so your team can detect sooner, respond faster, and adapt continuously.
Read Post
securonix

Securonix Threat Labs Monthly Intelligence Insights - November 2025

Dec 16, 2025 By Authors: In Securonix
The Monthly Intelligence Insights report provides a summary of top threats curated, monitored, and analyzed by Securonix Threat Labs in November 2025. The report also includes a synopsis of the threats, indicators of compromise (IoCs), tactics, techniques, and procedures (TTPs), and related tags. Each threat has a comprehensive summary from Threat Labs and search queries from the Threat Research team.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.