Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SecurityScorecard

Lazarus Group Targets Developers Through NPM Packages and Supply Chain Attacks

Mar 7, 2025 By SecurityScorecard In SecurityScorecard
North Korea’s Lazarus Group is evolving its tactics again. The latest campaign, dubbed Operation Marstech Mayhem, introduces an advanced implant named “Marstech1.” This malware is designed to compromise software developers and cryptocurrency wallets through manipulated open-source repositories. Unlike previous Lazarus operations, this campaign employs obfuscation techniques that make detection significantly harder. Read the full report here.
Read Post
squarex

SquareX Unveils Polymorphic Extensions that Morph Infostealers into Any Browser Extension - Password Managers, Wallets at Risk

Mar 6, 2025 By SquareX
With recent attack disclosures like Browser Syncjacking and extension infostealers, browser extensions have become a primary security concern at many organizations. SquareX's research team discovers a new class of malicious extensions that can impersonate any extension installed on the victim's browser, including password managers and crypto wallets.
Read Post
protegrity

Inside a Cyberattack: How Hackers Steal Data

Mar 6, 2025 By Dave Gray, VP EMEA and Glenn Wilkinson, Professional Hacker and Speaker In Protegrity
The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organisation, particularly as the cybercrime industry becomes increasingly sophisticated and their technology more advanced. Furthermore, once a hacker has broken through an organisation's defences, it is relatively easy to move within the network and access information without being detected for days and even months. This is a significant concern for Banking and Financial Services organisations, which house valuable sensitive and Personally Identifiable Information (PII).
Read Post
fidelis security

Detecting and Controlling Hidden DNS Tunnel Attacks

Mar 5, 2025 By Fidelis Security In Fidelis Security
DNS is the backbone of the internet, translating domain names into IP addresses to facilitate communication between devices. However, cybercriminals exploit DNS to create covert channels for data exfiltration and command-and-control (C2) operations using DNS tunneling. This technique allows attackers to bypass security measures by disguising malicious traffic as legitimate DNS queries. As DNS-based attacks continue to rise, securing DNS traffic has become a priority for organizations worldwide.
Read Post
CrowdStrike

Intelligence-Led Threat Hunting: The Key to Fighting Cross-Domain Attacks

Mar 3, 2025 By Thuy Nguyen - Dana Larson In CrowdStrike
Cross-domain attacks have become a defining challenge in modern cybersecurity, with adversaries exploiting gaps across endpoints, identity systems, and cloud environments to achieve their objectives. These sophisticated attacks use stealthy, malware-free techniques and legitimate tools, making them exceptionally difficult to detect and disrupt.
Read Post
securitysenses

The Role of DevSecOps in Modern Software Development

Mar 2, 2025 By SecuritySenses In SecuritySenses
In today's fast-paced digital world, security threats are becoming more sophisticated, requiring businesses to integrate robust security measures into their software development lifecycle. Traditional development approaches often treat security as an afterthought, leading to vulnerabilities that can be costly to fix. This is where DevSecOps comes into play-an approach that embeds security into the DevOps pipeline from the start, ensuring that security is a core component rather than an add-on.
Read Post
Cybriant

Zero-Day Attacks: From Netflix's "Zero Day" with DeNiro to Real-World Implications

Mar 1, 2025 By Cybriant In Cybriant
In the realm of cybersecurity, the term “zero-day attack” signifies a threat that exploits previously unknown vulnerabilities, leaving no time for detection or defense. Netflix’s limited series “Zero Day,” starring Robert De Niro as former President George Mullen, brings this concept to the forefront of public consciousness.
Read Post
cyjax

From Initial Access to Ransomware Attack: An Analysis of Timelines from IAB Listings on Cybercriminal Forums to Extortion Attacks

Feb 28, 2025 By Adam Price In CYJAX
Cyjax monitors and analyses the initial access broker (IAB) market on the most prominent cybercriminal forums. As noted in Cyjax’s 2024 IAB market in review, it is almost certain that extortion groups, APTs, data brokers, and other threat groups use IABs to gain initial access to targeted networks. Though at first glance it is not immediately obvious how important the IAB market is to the threat landscape, Cyjax has conducted a deep analysis of public IAB listings and extortion group DLSs.
Read Post
11:11 systems

Building Cyber Resilience: Lessons from Recent High-Profile Attacks

Feb 28, 2025 By Scott Gray In 11:11 Systems
It is human nature to think “oh, that will never happen to us!”. Whether it is a car accident, an IRS audit, or the loss of a job, we can never really feel immune from misfortune or adversity that may come our way. Much in the same way, the threat from cyberattacks is no longer a rare occurrence confined to large corporations. Organizations of all sizes face mounting challenges in an environment where cybercrime is increasingly sophisticated and disruptive.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.