Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SecurityScorecard

Lazarus Group Targets Developers Through NPM Packages and Supply Chain Attacks

Mar 7, 2025 By SecurityScorecard In SecurityScorecard
North Korea’s Lazarus Group is evolving its tactics again. The latest campaign, dubbed Operation Marstech Mayhem, introduces an advanced implant named “Marstech1.” This malware is designed to compromise software developers and cryptocurrency wallets through manipulated open-source repositories. Unlike previous Lazarus operations, this campaign employs obfuscation techniques that make detection significantly harder. Read the full report here.
Read Post
CrowdStrike

How Three Industry Leaders Are Stopping Identity-Based Attacks with CrowdStrike

Mar 7, 2025 By Ryan Terry In CrowdStrike
The CrowdStrike 2025 Global Threat Report highlights the ongoing threat of identity-based attacks. Adversaries are increasingly exploiting stolen credentials to evade detection, and 79% of detections overall were classified as malware-free. Valid account abuse became the primary initial access method in 35% of cloud intrusions. The report also shares that access broker advertisements rose by 50% year-over-year, indicating a rise in demand for valid credentials and other forms of access.
Read Post
keeper

Protecting Privileged Accounts With FIDO2 Security Keys

Mar 7, 2025 By Jaryeong Kim In Keeper
Securing privileged accounts with FIDO2 security keys is the best way to protect them from internal and external threats because they offer enhanced security and convenience compared to traditional authentication methods. Continue reading to learn more about why traditional methods are insufficient for protecting privileged accounts, how FIDO2 enhances security and the benefits of using FIDO2 for privileged accounts.
Read Post
levelblue

Prevent, Detect, Contain: LevelBlue MDR's Guide Against Black Basta Affiliates' Attacks

Mar 7, 2025 By Ken Ng In LevelBlue
Between December 2024 and February 2025, the LevelBlue MDR team saw over a dozen attempts and a handful of successful intrusions by threat actors (TAs). Internally, we broadly attribute these attacks to the Black Basta ransomware gang. As outlined by other cybersecurity researchers’ reporting of similar tactics, techniques, and procedures (TTPs) observed; there is a high probability that this activity is from affiliate groups or initial access brokers.
Read Post
centripetal

Security Bulletin: Arbitrary Command Execution in Kibana

Mar 7, 2025 By Lauren Farrell In Centripetal
On Wednesday, March 5th, Kibana disclosed a security vulnerability with a Critical CVSS score of 9.9 impacting versions 8.15.0 through 8.17.2, with 8.17.3 being patched to fully remediate the vulnerability. The vulnerability, known as prototype pollution, revolves around the malicious crafting of file uploads and the sending HTTP requests leading to arbitrary code execution on the host machine.
Read Post
stripe olt

Stripe OLT Joins Microsoft FastTrack Program

Mar 7, 2025 By Stripe OLT In Stripe OLT
It’s undeniable that cyber threats are becoming more sophisticated, and SMEs are facing increasing risks. Ransomware attacks, data breaches, and supply chain vulnerabilities are all on the rise, with smaller businesses being hit hardest due to limited security resources and technical expertise. At Stripe OLT, we don’t just recognise these challenges – we’re here to help you tackle them.
Read Post
11:11 systems

The Hyperdrive for Your Data

Mar 7, 2025 By Laura Shafer In 11:11 Systems
Whether it needed to outrun Imperial fighters or make the Kessel Run in less than 12 parsecs, the Millennium Falcon simply couldn’t work its magic without a functioning hyperdrive. Similarly, today’s business enterprises need a way to move vast amounts of data quickly, securely, and without interruption—but relying on the public internet simply isn’t cutting it. Data is one of the most valuable resources a business can have.
Read Post
ignyte Team

Guide: What is the CMMC-AB (Accreditation Body)?

Mar 7, 2025 By Max Aulakh In Ignyte
Every year that goes by shows an improvement in technology, often by leaps and bounds over previous technology. What used to be the realm of far-off science fiction so unbelievably exotic that it defined genres is now a commonplace reality. With new technology comes new threats. We’ve seen a dramatic increase in digital threats, from the SolarWinds supply line attack, to the compromised Outlook services, to the currently-ongoing Salt Typhoon attack on telecom companies.
Read Post

#196 - Security challenges in the Arctic with Deepak Dutt, Founder of Zighra

Mar 7, 2025 By LimaCharlie In LimaCharlie
On this episode of The Cybersecurity Defenders Podcast, we talk about security issues in the Arctic with Deepak Dutt, Founder of Zighra. Deepak is a technology leader and entrepreneur on a mission to secure the future against AI-powered threats and to inspire founders to transform their ideas from zero to meaningful impact. Deepak’s career began in the software space, inspired by his father’s passion for technology. In his late teens, he founded his first company in the eLearning space, which he successfully led to an acquisition, relocating to Ottawa at the age of 21.
View Video

LimaCharlie Playbooks demo

Mar 7, 2025 By LimaCharlie In LimaCharlie
LimaCharlie Playbooks expand the use of Python in the SecOps Cloud Platform (SCP), letting users reduce the learning curve for leveraging advanced capabilities in our platform. While the current format of our detection and response rules remain highly effective, our playbooks make much of the same functionality available to Python scripts. Playbooks also give users extreme control and granular functionality over certain operations that LCQL does not.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.