Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

knowbe4

New Criminal Toolkit Abuses Browser Push Notifications

Dec 3, 2025 By KnowBe4 Team In KnowBe4
A new criminal platform called “Matrix Push C2” is using browser notifications to launch social engineering attacks, according to researchers at BlackFog. “This browser-native, fileless framework leverages push notifications, fake alerts, and link redirects to target victims across operating systems,” the researchers write.
Read Post
WatchGuard Threat Lab's top six cybersecurity predictions for 2026

WatchGuard Threat Lab's top six cybersecurity predictions for 2026

Dec 2, 2025 By WatchGuard In WatchGuard
WatchGuard has revealed its top six cybersecurity predictions for 2026, forecasting a year where AI-driven threats, regulatory pressures, and the decline of legacy tools will reshape the security landscape. Corey Nachreiner, chief security officer at WatchGuard Technologies, emphasises that organisations must prepare for rapid evolution in both attack methods and defensive strategies.
Read Post
cato networks

Cato CTRL Threat Research: From Productivity Boost to Ransomware Nightmare - Weaponizing Claude Skills with MedusaLocker

Dec 2, 2025 By Inga Cherny In Cato Networks
Claude Skills is a new feature from Anthropic that has gained rapid adoption, with more than 17,000+ GitHub stars already since its launch in October 2025, allowing users to create and share custom code modules that expand Claude’s capabilities and streamline workflows. But as this ecosystem grows, Cato CTRL uncovered a serious oversight into how Skills are executed.
Read Post

Top CISO Priorities and Global Digital Trust with Morgan Adamski

Dec 2, 2025 By Rubrik In Rubrik
Welcome to Data Security Decoded. Join host Caleb Tolin in conversation with Morgan Adamski who leads Cyber, Data, and Tech Risk at PwC and is a former US national security leader who spent 16 years tracking nation-state threats inside the US government. Coming out of a career spent inside secure facilities without windows or phones and working to address China’s prepositioning in US critical infrastructure, Morgan shares a direct view of how geopolitics is now shaping cyber risk decisions in boardrooms.
View Video
foresiet

Shai-Hulud Returns 2.0 - Massive Self-Propagating npm Supply-Chain Attack Hits 600 Packages and 100M+ Downloads

Dec 1, 2025 By Foresiet In Foresiet
The software supply chain has come under assault once again with the resurgence of the Shai-Hulud npm worm—now significantly more advanced, more destructive, and far more widespread. Consequently, what is quickly being described as one of the most serious active threats to the npm ecosystem, the second wave of the Shai-Hulud campaign has compromised at least 600 npm packages, collectively downloaded more than 100 million times. One of the most alarming aspects of this campaign is its origin point.
Read Post
Malvertising 101: When the Top Ad on Your Search Is a Trap

Malvertising 101: When the Top Ad on Your Search Is a Trap

Dec 1, 2025 By SecuritySenses In SecuritySenses
Online searching is something we do on a daily basis, often more than once, and we usually rely on the first result that appears. While it's the most practical solution, it's not the safest. In recent years, we've seen a growing threat called malvertising, which is a much more sophisticated trap than most of what we're accustomed to seeing. The numbers indicate that this is an increasing concern, and we'll explain how to protect yourself from it.
Read Post
acronis

How to detect and stop ransomware attacks using endpoint protection software

Nov 28, 2025 By Acronis In Acronis
At a Glance: Effective Ransomware Defense for MSPs To effectively detect and stop modern ransomware, Managed Service Providers (MSPs) must evolve beyond traditional antivirus to AI-driven Endpoint Detection and Response (EDR). This article details the five stages of a ransomware infection—from initial delivery to extortion—and provides a comprehensive guide on halting them. Core concepts covered include.
Read Post
WatchGuard

Black Friday: How to Protect Your Retail Clients from Ransomware

Nov 28, 2025 By Stephen Helm In WatchGuard
Black Friday is one of the most demanding seasons for the retail sector. Massive spikes in online traffic, aggressive promotions, and pressure to keep services available significantly increase the risk of an attack. Cybercriminals are aware of this and exploit the saturation to launch ransomware campaigns, phishing attempts, and supply chain attacks that aim to disrupt operations, steal sensitive data, and cause maximum impact.
Read Post
Cybersecurity in Healthcare: Protecting Patient Data in the Age of AI, IoMT, and Ransomware

Cybersecurity in Healthcare: Protecting Patient Data in the Age of AI, IoMT, and Ransomware

Nov 28, 2025 By SecuritySenses In SecuritySenses
Over the past decade, the global healthcare sector has undergone a sweeping digital transformation. Electronic Health Records (EHRs) moved to the cloud, hospitals adopted remote telemetry systems, pharmacies automated workflows, and AI-powered diagnostics entered day-to-day clinical practice. The result is a faster, more connected, and more data-rich healthcare ecosystem. But this connectivity has a cost.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.