Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Cyberattacks

Operation 99: North Korea's Cyber Assault on Software Developers

On January 9, the SecurityScorecard STRIKE team uncovered Operation 99, a cyberattack by the Lazarus Group, North Korea’s state-sponsored hacking unit. This campaign targets software developers looking for freelance Web3 and cryptocurrency work. If you thought fake job offers from the group’s Operation Dream Job campaign were bad, this latest move is a masterclass in deception, sophistication, and malicious intent. Here’s why Operation 99 demands your attention.

How Attackers Exploit APIs for Rapid Data Breaches #Vulnerabilities #TechTrends #CyberThreats

Attackers now exploit APIs for rapid data breaches, taking advantage of a 96% rise in API-related vulnerabilities. Learn how realized risks (breaches) differ from unrealized risks (vulnerabilities) and why APIs are top targets. Stay informed on API security trends.

CrowdStrike: Stopping Cross-Domain Attacks

Discover how adversaries evade detection by exploiting gaps across endpoint, identity, and cloud environments - and how CrowdStrike stops them. In this demo, see the power of the CrowdStrike Falcon platform’s unified visibility and expert threat hunting in action, uncovering lateral movement, detecting evasive tactics, and accelerating response to sophisticated and stealthy cross-domain attacks. Learn how to get unmatched protection across your entire attack surface with CrowdStrike.

The REAL Impact of Hospital Cyberattacks, It's More Than Just 'Rescheduling #shorts #cybersecurity

When hospitals say "procedures were rescheduled" after a cyberattack, they're missing the human cost. For many patients, a medical appointment isn't just a calendar entry – it's arranged time off work, transportation plans, aftercare support, and lost wages. These disruptions hurt vulnerable communities the most and damage the essential trust between healthcare providers and their patients.

Unlocking the power of Amazon VPC: Transforming security and efficiency across sectors

The rise in cyberattacks has become a pressing concern for organizations worldwide, threatening sensitive data, operational continuity, and trust. Cybercriminals are using increasingly complex strategies to attack vulnerabilities in systems and networks in a variety of organizations. By offering safe, segregated virtual networks in the cloud, Amazon Virtual Private Cloud (Amazon VPC) provides a strong defense against these attacks.

Cyber Threats Rising: US Critical Infrastructure Under Increasing Attack in 2025

As we enter 2025, the frequency and sophistication of cyberattacks on critical national infrastructure (CNI) in the US are rising at an alarming rate. These attacks target the foundational systems that support everything from energy and water to transportation and communications, and the consequences are far-reaching and potentially catastrophic. They impact not just the operations of these services but also the very way of life for affected populations.

What is Credential Stuffing?

Credential stuffing is a type of cyberattack where attackers use stolen username and password combinations, often obtained from previous data breaches, to gain unauthorized access to multiple online accounts. The attacker automates the process of trying these combinations across various websites, hoping that users have reused the same login details.