Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

cyjax

The Use Of Artificial Intelligence In Threat Intelligence

Feb 25, 2025 By Shail Yadav In CYJAX
Artificial Intelligence (AI) is a double-edged sword in cybersecurity, empowering both defenders and attackers. AI-driven security systems are often used to detect threats in real-time, analysing large datasets for anomalies, and automating responses to cyberattacks. However, cybercriminals are also leveraging AI to create advanced malware, automate phishing attacks, and evade traditional defenses.
Read Post
ThreatQuotient

Cybersecurity Automation Adoption: Hype vs. Reality

Feb 25, 2025 By Julia Weifenbach In ThreatQuotient
Cybersecurity automation has followed a path familiar to many emerging technologies: a cycle of inflated expectations, hard realities, and eventual refinement. Gartner’s “hype cycle” provides a useful framework for understanding this journey—initial enthusiasm and lofty expectations give way to challenges and disillusionment before practical, high-value use cases emerge.
Read Post

February 24, 2025 Cyber Threat Intelligence Briefing

Feb 24, 2025 By Kroll In Kroll
February 24, 2025 Cyber Threat Intelligence Briefing This week’s briefing covers: KTA080 (CL0P) Update CL0P has again updated their data leak site with a new list of redacted victim organizations possibly linked to the Cleo vulnerability. The list contains company names beginning with the letters E-H. This follows the current pattern the group has established with releasing redacted names to then later slowly start releasing the actual entity and published data associated with it if the victim organization has not reached out to CL0P.
View Video
centripetal

Security Bulletin: PAN-OS Authentication Bypass Vulnerability

Feb 20, 2025 By Lauren Farrell In Centripetal
CVE-2025-0108 is a high-severity authentication bypass vulnerability affecting Palo Alto’s PAN-OS, the operating system for their next-generation firewalls. This flaw allows an unauthenticated attacker with network access to the PAN-OS management web interface to bypass authentication controls and execute restricted PHP scripts.
Read Post
cyjax

A Guide to Working in Threat Intelligence

Feb 19, 2025 By Shail Yadav In CYJAX
According to Gartner Research and McMillan (2003), “Threat intelligence is evidence-based knowledge, including context, mechanisms, indicators, implications, and actionable advice, about an existing or emerging hazard to assets that can inform decisions on how to respond.” Threat intelligence involves analysing data to predict and prevent cyber threats, allowing organisations to identify risks early and implement proactive defences.
Read Post
centripetal

Security Bulletin: Rha-Rha-Rhadamanthys Information Stealer

Feb 18, 2025 By Lauren Farrell In Centripetal
The origin of the word “Rhadamanthys”, goes back to Greek mythology where he was a legendary figure who ruled as king of Crete. Born to Zeus and Europa, he held the status of demigod and was renowned for his wisdom. Rhadamanthys Stealer is a sophisticated information stealer written in C++ that employs multiple evasion techniques. The malware utilizes a custom packer for code obfuscation and incorporates anti-VM and anti-debugging mechanisms to prevent analysis.
Read Post

February 18, 2025 Cyber Threat Intelligence Briefing

Feb 18, 2025 By Kroll In Kroll
February 18, 2025 Cyber Threat Intelligence Briefing This week’s briefing covers: CL0P Update CL0P updated their data leak site with a new victim list of approximately 43 organizations. The organizations are likely from the previous redacted list containing company names from C-E and are possibly associated with the Cleo zero-day vulnerability.
View Video
securitysenses

How to Set Up Proactive Threat Intelligence

Feb 18, 2025 By SecuritySenses In SecuritySenses
What is the best way to avoid suffering multi-million-dollar security incidents? Know your cyber enemy in advance. This means having quality threat intelligence on all the threats targeting your business, industry, or country. Let's take a look at one of the most effective methods of collecting intel that your organization can use to better predict, detect, and respond to cyber attacks.
Read Post
bitsight

OSINT Framework: How Open Source Intelligence Powers Cybersecurity

Feb 14, 2025 By Sabrina Pagnotta In BitSight
Open Source Intelligence (OSINT) is the backbone of modern cybersecurity investigations, helping analysts and law enforcement uncover threats, assess risks, and gather intelligence from publicly available sources. In this guide, we break down everything you need to know about OSINT, from key frameworks and tools to how it's used in cybersecurity.
Read Post
centripetal

Security Bulletin: Fake Reddit Sites and Lumma Stealer

Feb 14, 2025 By Lauren Farrell In Centripetal
A new campaign distributing the notorious Lumma Stealer malware has been discovered by security analyst Crep1x at Sekoia. Threat actors are utilizing over 80 second-level domains to generate over 1,000 fully qualified domain names impersonating Reddit and WeTransfer. Websites impersonating Reddit feature a fake thread designed to deceive victims into downloading the malware.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.