Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

securonix

Preemptive Security, Governed Autonomy, and the Reality of Modern SOC Operations

Jan 27, 2026 By Simon Hunt In Securonix
Artificial intelligence is now central to every conversation about the future of security operations. Terms like autonomous, agentic, and preemptive are everywhere. Yet much of the discussion skips the harder question CISOs, SOC leaders, and boards actually care about: how AI can be applied responsibly, predictably, and at scale in real-world security operations. If we get this wrong, we do not just risk wasted investment. We risk eroding trust in the SOC itself.
Read Post
securonix

Securonix Threat Labs Monthly Intelligence Insights - December 2025

Jan 14, 2026 By Dheeraj Kumar and Nitish Singh In Securonix
The Monthly Intelligence Insights report provides a summary of top threats curated, monitored, and analyzed by Securonix Threat Labs in December 2025. The report also includes a synopsis of the threats, indicators of compromise (IoCs), tactics, techniques, and procedures (TTPs), and related tags. Each threat has a comprehensive summary from Threat Labs and search queries from the Threat Research team.
Read Post
securonix

SHADOW#REACTOR - Text-Only Staging, .NET Reactor, and In-Memory Remcos RAT Deployment

Jan 12, 2026 By Akshay Gaikwad, Shikha Sangwan, Aaron Beardslee In Securonix
The Securonix Threat Research team has analyzed a multi-stage Windows malware campaign tracked as SHADOW#REACTOR. The infection chain follows a tightly orchestrated execution path: an obfuscated VBS launcher executed via wscript.exe invokes a PowerShell downloader, which retrieves fragmented, text-based payloads from a remote host. These fragments are reconstructed into encoded loaders, decoded in memory by a .NET Reactor–protected assembly, and used to fetch and apply a remote Remcos configuration.
Read Post
Featured Post
Same Mission, Different Mindsets: CISOs and Incident Response Leaders in the Age of AI and Automation

Same Mission, Different Mindsets: CISOs and Incident Response Leaders in the Age of AI and Automation

Jan 5, 2026 By Leon Ward, Chief Transformational Officer In Securonix
When you work in cybersecurity, whether you're steering the operational team, or in a more strategic role, the mission is the same: protect the business. But when it comes to executing that mission, finding consensus on the best approach can be hard. At this pivotal point in the evolution of cybersecurity, as automation becomes table stakes and AI adoption accelerates, it is important that stakeholders are pulling in the same direction. However, recent ThreatQuotient research highlights real differences in how CISOs and Heads of IR approach the introduction of AI into cybersecurity strategy and practice.
Read Post
securonix

Analyzing PHALT#BLYX: How Fake BSODs and Trusted Build Tools Are Used to Construct a Malware Infection

Jan 5, 2026 By Shikha Sangwan, Akshay Gaikwad, Aaron Beardslee In Securonix
Securonix threat researchers have been tracking a stealthy campaign targeting the hospitality sector using click-fix social engineering, fake captcha and fake blue screen of death to trick users into pasting malicious code. It leverages a trusted MSBuid.exe tool to bypass defenses and deploys a stealthy, Russian-linked DCRat payload for full remote access and the ability to drop secondary payloads.
Read Post
Featured Post
Security Shifts in 2026: Risk Moves Beyond the CISO

Security Shifts in 2026: Risk Moves Beyond the CISO

Dec 19, 2025 By Chris Jacob, Field CISO In Securonix
In 2026, cybersecurity will shift from being seen as the security team's responsibility to being part of how the entire company operates. Every business function will share ownership of risk. Finance, engineering, product, and marketing will all have clear roles in protecting customer trust.
Read Post
securonix

Intel to Action: How Integrated Threat Intelligence Platforms Transform the Modern SOC

Dec 17, 2025 By Vanessa Sorenson In Securonix
Today’s adversaries are fast, distributed, and increasingly coordinated. Yet many SOCs remain reactively trapped in fragmented tools, endless alert queues, and growing pressure from executives to prove not just security, but resilience. It’s no longer enough to collect threat feeds or stand up a threat intel team. What’s needed is integrated intelligence—curated, contextualized, and operationalized—so your team can detect sooner, respond faster, and adapt continuously.
Read Post
securonix

Securonix Threat Labs Monthly Intelligence Insights - November 2025

Dec 16, 2025 By Authors: In Securonix
The Monthly Intelligence Insights report provides a summary of top threats curated, monitored, and analyzed by Securonix Threat Labs in November 2025. The report also includes a synopsis of the threats, indicators of compromise (IoCs), tactics, techniques, and procedures (TTPs), and related tags. Each threat has a comprehensive summary from Threat Labs and search queries from the Threat Research team.
Read Post
securonix

JS#SMUGGLER: Multi-Stage - Hidden Iframes, Obfuscated JavaScript, Silent Redirectors & NetSupport RAT Delivery

Dec 4, 2025 By 1. Stage 1 Overview In Securonix
The Securonix Threat Research team has analyzed a sophisticated web-based multi-stage malware campaign. The attack chain unfolds across three distinct stages: (1) an obfuscated JavaScript loader injected into a compromised website, (2) a stealthy HTA (HTML Application) that executes encrypted PowerShell stagers via mshta.exe, and (3) a final PowerShell payload that downloads, extracts, executes, and establishes persistence for a Windows-based remote access Trojan.
Read Post
securonix

Built for AWS. Built for How Security Teams Really Work.

Dec 3, 2025 By Jeff Fink, Director, Cloud Alliances In Securonix
Every security team I meet is dealing with the same pressure: more cloud, more AI, more data, more noise, and less time. The cloud promised speed and flexibility, and it delivered. However, customers are asking for an easier path to understanding what’s actually happening across that environment. That gap, between what teams can see and what they need to see, is where threats hide.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.