Security Insights
Latest threat analysis, industry news, and security best practices from our expert team.
FBI Alert: Kali365 Phishing-as-a-Service Hijacks M365 OAuth Tokens — Detection and Defense
The FBI has issued a warning regarding 'Kali365,' a sophisticated social engineering-as-a-service (SEaaS) platform specifically designed to ...
Megalodon GitHub Actions Attack: Detection and Remediation Guide
Megalodon GitHub Actions Attack: Detection and Remediation Guide Introduction The integrity of the software supply chain is under siege. Sec...
CVE-2024-33411: Drupal Core Vulnerability Added to CISA KEV — Detection and Remediation
Introduction The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw in Drupal Core to its Known...
DocketWise Data Breach: 143,000 Records Exposed via Third-Party Access — Detection and Response
Introduction A significant data breach involving DocketWise, a prominent immigration case management platform, has resulted in the exposure ...
DinDoor Backdoor, AdaptixC2 & The Gentlemen RaaS: Multi-Vector OTX Pulse Analysis — Enterprise Detection Pack
Threat Summary Recent OTX pulses indicate a surge in diverse threat activity ranging from state-aligned espionage to financially motivated r...
TwizAdmin MaaS & Lazarus Mach-O Man: Crypto Clipping, macOS ClickFix, and Middle East C2 Surge — Detection Pack
TwizAdmin MaaS & Lazarus Mach-O Man: Crypto Clipping, macOS ClickFix, and Middle East C2 Surge — Detection Pack Threat Summary Recent OTX pu...
TwizAdmin, Lazarus & KICS Supply Chain: Multi-Vector Infostealer Analysis — Enterprise Detection Pack
Threat Summary Recent OTX pulses indicate a convergence of sophisticated credential theft campaigns and supply chain compromises targeting e...
QILIN Ransomware: Global Campaign Smashes Business Services — SmarterMail & ScreenConnect Exploitation Detected
Threat Actor Profile — QILIN Aliases: Agenda, Qilin (often stylized as Qilin.B) Operational Model: Ransomware-as-a-Service (RaaS). Qilin ope...
Supply Chain Attacks: Detecting `node-ipc`, `@antv`, and Malicious GitHub Actions
Introduction The latest Security Affairs Malware Newsletter (Round 98) highlights a disturbing convergence of supply chain compromises targe...