Inside the SectorCERT Denmark Attack: How Corelight Helped Stop a Coordinated Campaign

Corelight CEO Brian Dye recounts how Corelight supported SectorCERT—an alliance of energy companies in Denmark—during one of the most advanced attack sequences he’s seen. The coordinated campaign targeted a shared firewall vulnerability across nearly a dozen organizations. Corelight provided the critical visibility and detection that helped defenders stop the first wave—and stay ahead of a second, modified attack just weeks later. The incident became a model of collaboration and response across national infrastructure.

The Future of Cybersecurity Standards for Global Federal Energy Systems

According to a report, 71% of energy industry professionals consider their organizations more vulnerable to OT cyber events than ever. These are private organizations, but the stakes are much higher for government-owned systems. Government-owned energy systems such as national grids, nuclear facilities, pipelines, and strategic reserves are foundational to national sovereignty and public welfare.

How Corelight Helped a Customer Reject a $10M Ransomware Demand

Corelight CEO Brian Dye shares the high-stakes story of a customer under a $10 million ransomware attack. The attackers claimed to have stolen sensitive IP—but with Corelight, the customer had the network visibility to verify exactly what was taken. The result? They confirmed the stolen data was limited and non-critical, enabling them to confidently deny the ransom demand. This powerful story illustrates the difference between “I think” and “I know”—and how that clarity can drive executive confidence, legal defensibility, and real-world savings.

AI Agents Never Sleep. The Future of Cybersecurity SOC Operations

AI agents are revolutionizing cybersecurity by handling the tedious false positive alerts that drain SOC analysts. As our security perimeter expands to the cloud, we're drowning in red blinking lights - but AI agents never tire and never sleep! Grant Oviatt from Prophet Security explains how AI is solving the alert fatigue problem that's plaguing security teams worldwide. Key Points: AI agents handle repetitive security tasks False positive alerts are overwhelming analysts Cloud expansion = more security alerts AI works 24/7 without fatigue.

Phishing-as-a-Service (PhaaS): A Cybercrime Subscription Service

The cybersecurity threat landscape is constantly evolving, and Trustwave SpiderLabs has noted one of the fastest-growing threats is Phishing-as-a-Service (PhaaS). PhaaS platforms have become the go-to tool for cybercriminals to launch sophisticated phishing campaigns targeting the general public and businesses. Much like legitimate software-as-a-service platforms, PhaaS offers cybercriminals subscription-based access to powerful phishing tools—without requiring advanced technical skills.

Leveraging API-driven security platforms for hybrid enterprises

Hybrid enterprises, defined by the coexistence of on-premises systems and cloud-based solutions, have become the norm in today’s digital economy. The evolution of IT infrastructure and the widespread adoption of cloud environments have dramatically broadened the attack surface. Enterprises face persistent threats including advanced persistent threats (APTs), data breaches, ransomware attacks, and insider risks.

What Is the Role of Privileged Access Management in Protecting Sensitive Data?

Privileged Access Management (PAM) plays a crucial role in protecting sensitive data by controlling, monitoring and limiting access to systems and accounts. PAM focuses specifically on managing accounts with elevated permissions, such as administrator or root accounts. These accounts, if compromised or misused, can pose significant security risks and potentially lead to severe data breaches.

From Detection to Action: How Thomas Murray Transformed Their Incident Response with LimaCharlie

Join us for an exclusive behind-the-scenes look at how Thomas Murray, a global risk intelligence company, enhanced their security operations using LimaCharlie's SecOps Cloud Platform. In this technical deep dive, Thomas Murray's security expert Guillermo Roman, demonstrates how they've leveraged LimaCharlie's platform to enhance their security operations. By implementing custom automation workflows, Thomas Murray has achieved significant reductions in incident response times.