Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This blog is the latest in a series that delves into the deep research conducted daily by the Trustwave SpiderLabs Threat Operations team on major threat actor groups currently operating globally. Trustwave SpiderLabs Cyber Threat Intelligence team has developed a new detailed analysis of Storm-2603, the threat group associated with the recent exploitation of security flaws in Microsoft SharePoint Server.

APIs are the foundation of modern applications, and attackers know it well. A single misconfigured endpoint or exposed token can give adversaries a direct path into sensitive systems and data across your environment. Your already overburdened security teams can’t afford to miss what may be their fastest-growing attack surface. How fast-growing is the threat?

Container runtime security becomes critical once your applications go live. Most security breaches happen during runtime, not the build phase. Configuration changes, unexpected network traffic, and privilege escalation attempts can compromise even containers that passed all pre-deployment security scans.

The cybersecurity perimeter is gone. In its place, a far more resilient framework has emerged: Zero Trust Networking (ZTN). This security model assumes no transaction is automatically permitted. Every connection, request, and data flow must be verified continuously. Learn how Elastic and Gigamon Application Metadata Intelligence (AMI) enable a security posture built on constant verification, rapid response, and adaptive trust.

Complying with HIPAA is tricky, as it consists of multiple rules and requirements. However, following them is a must if you want to secure your data and avoid penalties. In this article, we discuss common types of HIPAA violations and the penalties you could face for breaking this law. Find out below how to ensure HIPAA compliance for your healthcare organization and the security of patient information you collect.

Did you know that the average cost of an outage can be as high as $9K per minute? Risks concerning your Office 365 data range from accidental deletions and ransomware to service outages. In 2025, we already witnessed a number of outages happening throughout the year. On March 1, several key services such as Outlook, Teams, and even Azure were disrupted. It is reported that 30K Outlook users, 150 Microsoft Teams users, and 24K Office 365 users were affected by this.

North Korean threat actor Kimsuky has escalated its social engineering tactics by leveraging military ID deepfakes to deceive South Korean targets. According to a recent analysis by South Korean cybersecurity firm Genians, the group is now using AI-generated images to impersonate military personnel, making phishing campaigns more convincing and harder to detect.

The cybercrime world took a major hit this month with the RaccoonO365 domain takedown, a coordinated move by Microsoft’s Digital Crimes Unit (DCU) and Cloudflare. By seizing 338 malicious domains, investigators disrupted a sprawling phishing-as-a-service ( PhaaS) network that had stolen more than 5,000 Microsoft 365 credentials across 94 countries. This action signals a shift toward large-scale, proactive disruption of phishing operations that exploit everyday users and global enterprises alike.

CrowdStrike is introducing Risk-based Patching in CrowdStrike Falcon for IT to close the gap between security and IT teams. With AI-powered Risk-based Patching and CrowdStrike Falcon Exposure Management, organizations can identify, prioritize, and fix the vulnerabilities most critical to them through a single console and workflow while accelerating security and IT consolidation.

CrowdStrike is unveiling groundbreaking innovations across Counter Adversary Operations. Threat AI, a system of AI-powered agents built on the CrowdStrike Falcon platform, is the industry’s first agentic threat intelligence system. It provides mission-ready agents to reason, hunt, and take action against any stage of adversary activity. In addition, the new Threat Intelligence Browser Extension for Google Chrome extends intelligence everywhere analysts work.