Threat
Hijacked npm Package Attempts to Deliver PolinRider-Linked RAT
Attackers do not need to wait for a CVE when they can publish directly into the build ...
Global Cyber Threat Intelligence Update: Key Attack Trends from the Past Week
Executive Overview The global cyber threat landscape continues to evolve in both scale and sophistication. Over the past week, multiple coordinated campaigns targeted enterprise remote access systems, publicly exposed Linux servers, endpoint ...
Detecting Insider Risk and Credential Abuse: Real-Time Security Intelligence with Seceon aiSIEM
Executive Overview As organizations continue to strengthen external defenses, attackers are increasingly shifting toward identity-based attacks and insider vectors. Compromised credentials, unauthorized privilege escalation, and repeated authentication failures are now among the ...
How to understand and avoid Advanced Persistent Threats
APT stands for Advanced Persistent Threat. But what does that actually mean, and how does it translate into the kind of threat you’re facing? ...
It’s 2026. Why are the basics still being missed?
Written by Katie Barnett, Director of Cyber Security, and Gavin Wilson, Director of Physical Security and Risk, at Toro SolutionsAfter spending years working with organisations on security, one thing becomes hard to ignore ...
The Great Shift: Cybersecurity Predictions for 2026 and the New Era of Threat Intelligence
As we look back on 2025, AI and open source have fundamentally changed how software is built. Generative AI, automated pipelines, and ubiquitous open source have dramatically increased developer velocity and expanded ...
Phishing as a Service 2.0: The Franchise Model of Cybercrime
The Golden Arches of Malice When you think of franchising, you probably picture McDonald’s, Starbucks, or Subway — not cybercriminals. But the uncomfortable truth is that modern cybercrime looks a lot less ...
LLMs in Security Operations: Helpful Sidekick or Hallucinating Intern?
Large language models (LLMs) are everywhere now. Your inbox, your SIEM, maybe even embedded in your security tool’s new “AI assistant” tab. It’s tempting to believe these tools are ready to triage ...
Trust Engineering: Building Security People Actually Believe In
Security doesn’t work without trust. You can deploy all the right tools, write high-fidelity detections, and put together a solid incident response plan—but if the engineers roll their eyes every time you ...
The Detection Rebuild, Part 2: Automating Detection Engineering Without Breaking the SOC
Coming off the heels of Part 1, where we focused on fixing the signal problem, Part 2 is all about scale. Because once you’ve cleaned up your alerts and improved your detection ...
