Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In 2024 threat actors were trying to abuse GitHub even more severely than before. There were detected thousands of “ghost accounts” spreading malware. Hackers were also trying to succeed in their malware campaigns using not only repositories but also comments. Moreover, multiple organizations that store their source code on GitHub have experienced data leakage and data breaches. Among those companies are The New York Times, Mercedes Benz, Ultralitics, etc.

2024 is behind us, but the cybersecurity lessons it left behind are still highly relevant. Data breaches remain a persistent threat to large enterprises and government agencies, as the data they store is prized by organizations and a prized target for cybercriminals. Attacks have economic consequences and serious reputational and legal repercussions, putting business stability at risk.

Data anomalies indicate serious issues like fraud, cyberattacks, or system breakdowns. It is crucial to preserve operational integrity and security as the complexity and volume of data is increasing as days pass by. To find anomalies in your datasets, anomaly detection uses a variety of algorithms be it statistical or machine learning or deep learning. To protect sensitive assets and ensure seamless operations, organizations require a robust anomaly detection system.

A Cloud-Native Application Protection Platform (CNAPP) is an integrated cloud security solution designed to safeguard cloud-native applications throughout their lifecycle. It combines various cloud native security tools and practices such as Cloud Workload Protection Platform (CWPP), cloud security posture management (CSPM), and Cloud Container Security to provide comprehensive protection across development, deployment, and operational phases in cloud environments.

Executive Summary DeepSeek is one of the biggest AI-based systems that originated in China, some serious cyberattacks recently disrupted its services, especially affecting new user registrations. It is not yet clear how it has been done. However, based on analysis and experience, people believe it was a Distributed Denial of Service (DDoS) attack against the system, as a DDoS attack simply sends too much traffic to any given system that causes downtime.

At the end of each quarter, we like to showcase a few special features, and walk through them with the Engineers, Designers, and Product Managers that brought them to life. Use the following timestamps to check out the different topics! Watch the full video here →

‍Founded in 2017 and headquartered in Seattle, WA, Mirai Security is a leading cybersecurity consultancy dedicated to delivering scalable, cost-effective solutions to businesses at every stage of their security journey. As a leading Managed Security Service Provider (MSSP), Mirai Security specializes in building and managing governance, risk, and compliance (GRC) operations, delivering tailored, end-to-end security programs to meet diverse client needs.

DeepSeek, a disruptive new AI model from China, has shaken the market, sparking both excitement and controversy. While it has gained attention for its capabilities, it also raises pressing security concerns. Allegations have surfaced about its training data, with claims that it may have leveraged models like OpenAI’s to cut development costs. Amid these discussions, one critical aspect remains underexplored—the security of AI agents and the vulnerabilities that allow for jailbreaks.

Learn how the F1 score helps you choose the right tool to strengthen your security posture.

Server Message Block (SMB) is a ubiquitous protocol used for file sharing, remote access, and resource management across enterprise networks. While critical for business operations, its misconfigurations can expose vulnerabilities to attackers. In this blog post, we’ll dive into a real-world red team operation where a simple yet effective PowerShell-based tool led us from SMB enumeration to full network takeover.