Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Threat Intelligence

cysiam

CYSIAM Announces Partnership with CrowdStrike to Strengthen Cyber Resilience in the UK Defence Supply Chain

Mar 4, 2025 By CYSIAM
CYSIAM aannounces partnership with CrowdStrike to strengthen cyber resilience across the UK Defence sector supply chain. Through this partnership, CYSIAM will equip defence organisations with advanced protection powered by the CrowdStrike Falcon cybersecurity platform, safeguarding critical national infrastructure and enhancing the nation's defence capabilities.
Read Post

March 03, 2025 Cyber Threat Intelligence Briefing

Mar 3, 2025 By Kroll In Kroll
This week’s briefing covers: KTA080 (CL0P) Update KTA080 has released the names of the previously redacted victim organizations ranging from E-H. Additionally, KTA080 has identified 183 victims’ organization names broadly covering H-W. KTA374 (Salt Typhoon) Telecoms Targeting Update Cisco Talos has released further information on the targeting of telecoms organizations identified in late 2024. This information includes the high level of living-off-the-land techniques used by the threat actor.
View Video
Featured Post
ThreatQuotient

Fortifying Financial Services Cybersecurity with Threat Intelligence and Cybersecurity Automation

Feb 26, 2025 By Chris Jacob, VP, Global Field Operations In ThreatQuotient
The World Economic Forum's Global Cybersecurity Outlook 2025 Insight Report paints a bleak picture of what the year ahead holds for technology security teams worldwide. However, some industries are likely to be worse off than others. The financial sector, for example, is an attractive target for cyber-attacks, as confirmed by Statista which states that the average cost of a data breach in this industry in 2024 was approximately $6.08 million, compared to $4.88 for the overall average cost of a data breach across all industries.
Read Post

Security Without Tears: Making Threat Intelligence Actionable - Fireside Chat

Feb 26, 2025 By UpGuard In UpGuard
Dr. Kane Tomlin, CIO at Mississippi State Department of Health shares his innovative ‘Security Without Tears’ approach. Learn how he reduces complexity, prioritizes threats, and implements practical, citizen-focused security solutions at MSDH.
View Video
cyjax

The Use Of Artificial Intelligence In Threat Intelligence

Feb 25, 2025 By Shail Yadav In CYJAX
Artificial Intelligence (AI) is a double-edged sword in cybersecurity, empowering both defenders and attackers. AI-driven security systems are often used to detect threats in real-time, analysing large datasets for anomalies, and automating responses to cyberattacks. However, cybercriminals are also leveraging AI to create advanced malware, automate phishing attacks, and evade traditional defenses.
Read Post
ThreatQuotient

Cybersecurity Automation Adoption: Hype vs. Reality

Feb 25, 2025 By Julia Weifenbach In ThreatQuotient
Cybersecurity automation has followed a path familiar to many emerging technologies: a cycle of inflated expectations, hard realities, and eventual refinement. Gartner’s “hype cycle” provides a useful framework for understanding this journey—initial enthusiasm and lofty expectations give way to challenges and disillusionment before practical, high-value use cases emerge.
Read Post

February 24, 2025 Cyber Threat Intelligence Briefing

Feb 24, 2025 By Kroll In Kroll
February 24, 2025 Cyber Threat Intelligence Briefing This week’s briefing covers: KTA080 (CL0P) Update CL0P has again updated their data leak site with a new list of redacted victim organizations possibly linked to the Cleo vulnerability. The list contains company names beginning with the letters E-H. This follows the current pattern the group has established with releasing redacted names to then later slowly start releasing the actual entity and published data associated with it if the victim organization has not reached out to CL0P.
View Video
centripetal

Security Bulletin: PAN-OS Authentication Bypass Vulnerability

Feb 20, 2025 By Lauren Farrell In Centripetal
CVE-2025-0108 is a high-severity authentication bypass vulnerability affecting Palo Alto’s PAN-OS, the operating system for their next-generation firewalls. This flaw allows an unauthenticated attacker with network access to the PAN-OS management web interface to bypass authentication controls and execute restricted PHP scripts.
Read Post
cyjax

A Guide to Working in Threat Intelligence

Feb 19, 2025 By Shail Yadav In CYJAX
According to Gartner Research and McMillan (2003), “Threat intelligence is evidence-based knowledge, including context, mechanisms, indicators, implications, and actionable advice, about an existing or emerging hazard to assets that can inform decisions on how to respond.” Threat intelligence involves analysing data to predict and prevent cyber threats, allowing organisations to identify risks early and implement proactive defences.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.