Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

securonix

How Smarter Security Economics Reduce Risk Without Breaking the SOC Budget

Feb 18, 2026 By Beth Dannemiller In Securonix
Most people don’t manage their personal finances by spending every dollar the same way. You don’t pay rent, groceries, retirement savings, and entertainment out of one undifferentiated bucket. You allocate intentionally covering daily necessities, protecting the future, and investing in things that improve quality of life. Yet that’s exactly how traditional SIEM pricing works. Every log costs the same. Every gigabyte is treated equally.
Read Post
securonix

Securonix Threat Labs 2025 Annual Autonomous Threat Sweeper Intelligence Insights

Feb 12, 2026 By Dheeraj Kumar and Sina Chehreghani In Securonix
The 2025 Annual Cyber Threat Intelligence Report captures the year’s most impactful attack patterns across exploitation-led intrusion, advanced malware (including AI-assisted techniques), and the ongoing evolution of ransomware/RaaS economics.
Read Post
Featured Post
It's Good to Talk: Dialogue and Community are Essential to Global Cybersecurity

It's Good to Talk: Dialogue and Community are Essential to Global Cybersecurity

Feb 6, 2026 By Leon Ward, Chief Transformation Officer In Securonix
The recent World Economic Forum meeting focused on "A Spirit of Dialogue". The conference themes emphasized the role of communication and connection in overcoming challenges and driving prosperity in the years ahead.
Read Post
securonix

Analyzing Dead#Vax: Analyzing Multi-Stage VHD Delivery and Self-Parsing Batch Scripts to Deploy In-Memory Shellcode

Feb 4, 2026 By Akshay Gaikwad, Shikha Sangwan, Aaron Beardslee In Securonix
Securonix Threat Research has been tracking a stealthy malware campaign that uses an uncommon chain of VHD abuse, script-based execution, self-parsing batch logic, fileless PowerShell injections and ultimately dropping RAT. The attack leverages IPFS-hosted VHD files, extreme script obfuscation, runtime decryption, and in-memory shellcode injection into trusted Windows processes, never dropping a decrypted binary to disk.
Read Post
securonix

Preemptive Security, Governed Autonomy, and the Reality of Modern SOC Operations

Jan 27, 2026 By Simon Hunt In Securonix
Artificial intelligence is now central to every conversation about the future of security operations. Terms like autonomous, agentic, and preemptive are everywhere. Yet much of the discussion skips the harder question CISOs, SOC leaders, and boards actually care about: how AI can be applied responsibly, predictably, and at scale in real-world security operations. If we get this wrong, we do not just risk wasted investment. We risk eroding trust in the SOC itself.
Read Post
securonix

Securonix Threat Labs Monthly Intelligence Insights - December 2025

Jan 14, 2026 By Dheeraj Kumar and Nitish Singh In Securonix
The Monthly Intelligence Insights report provides a summary of top threats curated, monitored, and analyzed by Securonix Threat Labs in December 2025. The report also includes a synopsis of the threats, indicators of compromise (IoCs), tactics, techniques, and procedures (TTPs), and related tags. Each threat has a comprehensive summary from Threat Labs and search queries from the Threat Research team.
Read Post
securonix

SHADOW#REACTOR - Text-Only Staging, .NET Reactor, and In-Memory Remcos RAT Deployment

Jan 12, 2026 By Akshay Gaikwad, Shikha Sangwan, Aaron Beardslee In Securonix
The Securonix Threat Research team has analyzed a multi-stage Windows malware campaign tracked as SHADOW#REACTOR. The infection chain follows a tightly orchestrated execution path: an obfuscated VBS launcher executed via wscript.exe invokes a PowerShell downloader, which retrieves fragmented, text-based payloads from a remote host. These fragments are reconstructed into encoded loaders, decoded in memory by a .NET Reactor–protected assembly, and used to fetch and apply a remote Remcos configuration.
Read Post
Featured Post
Same Mission, Different Mindsets: CISOs and Incident Response Leaders in the Age of AI and Automation

Same Mission, Different Mindsets: CISOs and Incident Response Leaders in the Age of AI and Automation

Jan 5, 2026 By Leon Ward, Chief Transformational Officer In Securonix
When you work in cybersecurity, whether you're steering the operational team, or in a more strategic role, the mission is the same: protect the business. But when it comes to executing that mission, finding consensus on the best approach can be hard. At this pivotal point in the evolution of cybersecurity, as automation becomes table stakes and AI adoption accelerates, it is important that stakeholders are pulling in the same direction. However, recent ThreatQuotient research highlights real differences in how CISOs and Heads of IR approach the introduction of AI into cybersecurity strategy and practice.
Read Post
securonix

Analyzing PHALT#BLYX: How Fake BSODs and Trusted Build Tools Are Used to Construct a Malware Infection

Jan 5, 2026 By Shikha Sangwan, Akshay Gaikwad, Aaron Beardslee In Securonix
Securonix threat researchers have been tracking a stealthy campaign targeting the hospitality sector using click-fix social engineering, fake captcha and fake blue screen of death to trick users into pasting malicious code. It leverages a trusted MSBuid.exe tool to bypass defenses and deploys a stealthy, Russian-linked DCRat payload for full remote access and the ability to drop secondary payloads.
Read Post
Featured Post
Security Shifts in 2026: Risk Moves Beyond the CISO

Security Shifts in 2026: Risk Moves Beyond the CISO

Dec 19, 2025 By Chris Jacob, Field CISO In Securonix
In 2026, cybersecurity will shift from being seen as the security team's responsibility to being part of how the entire company operates. Every business function will share ownership of risk. Finance, engineering, product, and marketing will all have clear roles in protecting customer trust.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.