A new CSO Online report based on research by Heimdal and FutureSafe paints a troubling picture for the managed services industry: 89% of MSPs struggle with integrating their security tools, and more than half (56%) experience daily or weekly alert fatigue. Even more concerning, MSPs juggling seven or more security ... Read More

Two ransomware groups—Akira and Lynx—are accelerating attacks at a scale that has captured the attention of both enterprises and managed service providers (MSPs). According to ChannelPro, the groups have claimed hundreds of victims across multiple sectors, exploiting stolen administrative credentials and leveraging Ransomware-as-a-Service (RaaS) models to expand their reach. Their ... Read More

The Guardian reports that the UK government has announced plans to ban public sector organizations—including the NHS, local councils, and schools—from paying ransomware demands. Under these proposals: Policy Shift: Bold Intent, Real-World Challenges On its face, the policy is a strong move to disrupt ransomware’s criminal profitability. However, it also ... Read More

A newly uncovered malware campaign in Turkey is raising alarms across the cybersecurity community. SoupDealer, a sophisticated Java-based loader, has been deployed in targeted attacks that bypassed every public sandbox, antivirus engine, and enterprise EDR/XDR tested against it. As reported by Cyber Security News, SoupDealer uses selective targeting—activating only when ... Read More

In July 2025, the U.S. government publicly attributed a series of stealthy cyber operations to Salt Typhoon, a threat actor linked to the People’s Republic of China. According to CyberScoop, the group—also known as APT40—has been quietly targeting government agencies, critical infrastructure, and private enterprises through living-off-the-land techniques that evade ... Read More

Cybersecurity is no longer a back-office IT function—it’s a board-level priority, especially in the mid-market. New data from ITPro shows that 85% of mid-sized enterprises now rely on MSPs for cybersecurity services, and nearly all (92%) are open to paying more for advanced offerings like AI-powered threat detection and zero-trust ... Read More

The modern workforce is undergoing a quiet transformation. According to SecurityWeek, as Gen Z professionals enter the job market, many are bringing with them a new approach to employment—polyworking, or juggling multiple jobs, gigs, or income streams at once. This trend is accelerating in digital-first industries, where side hustles, freelance ... Read More

In early July, researchers uncovered a troubling development in the ransomware landscape: the reemergence of Pay2Key, a ransomware-as-a-service (RaaS) operation tied to the Iranian threat group known as Fox Kitten. Now rebranded and refactored as Pay2Key.I2P, this variant represents more than just another name on the threat radar—it’s a blueprint ... Read More

As cybersecurity leaders look to the second half of 2025, it’s clear that defending modern infrastructure is no longer just about blocking malware or patching systems—it’s about keeping pace with a threat landscape that’s evolving faster than most organizations can respond. During Seceon’s Innovation & Certification Days, I had the ... Read More

Live from the Gartner Security & Risk Management Summit 2025, Seceon’s Shikha Pandey caught up with Obviam’s EVP Keith Johnson to discuss a major shift in cybersecurity leadership: the move toward outcome-driven metrics as the new standard for evaluating cybersecurity effectiveness. According to Keith, one recurring theme from the Gartner ... Read More