threat detection

Cybercriminals have ramped up efforts to exploit Microsoft 365’s Direct Send feature and unsecured SMTP relays, launching sophisticated phishing campaigns that masquerade as internal company emails—placing even vigilant organizations at substantial risk. According to recent research by...

The launch of Thorium, the open-source malware analysis platform unveiled by the Cybersecurity and Infrastructure Security Agency (CISA), marks a significant milestone in the evolution of threat intelligence and response capabilities for organizations worldwide. With cyberattacks growing in...

A sophisticated phishing campaign exploiting trusted email security tools has rattled the cybersecurity landscape, exposing a dismally clever strategy that turns protective mechanisms into attack vectors. Between June and July 2025, researchers at Cloudflare uncovered an operation wherein...

Leveraging trusted internal channels has long been a gold standard for cybercriminals seeking to evade organizational defenses, but a recent campaign uncovered by Proofpoint signals a new level of ingenuity in exploiting a familiar Microsoft 365 feature: Direct Send. This functionality, designed...

Threat actors are increasingly exploiting Microsoft 365’s Direct Send feature to conduct highly convincing internal phishing campaigns, eroding trust within organizations and challenging the efficacy of traditional security defenses. This emergent attack vector, recently highlighted by...

In the ever-evolving landscape of cybersecurity, email remains a primary vector for attacks such as phishing, malware, and business email compromise (BEC). To bolster defenses, organizations often deploy a combination of native security solutions and third-party tools. Microsoft Defender for...

Phishing campaigns have always shaped themselves around the contours of new technology, but the latest surge targeting Microsoft OAuth applications marks a seismic shift in both attacker strategy and the effectiveness of their exploits. In 2025, security researchers uncovered a wave of hybrid...

Phishing campaigns have always evolved in tandem with advances in enterprise security, but the latest wave targeting Microsoft OAuth applications represents a stunning leap in both sophistication and effectiveness. This ongoing campaign, first identified in early 2025, exemplifies a new breed of...

In a significant advancement for cybersecurity operations, BlinkOps has partnered with Microsoft to integrate its agentic security automation platform directly with Microsoft Sentinel. This collaboration enables organizations to swiftly create and deploy no-code, deterministic workflows in...

In today’s hyper-connected digital era, where the lines between on-premises infrastructure and sprawling cloud environments are increasingly blurred, identity-based cyberthreats have surged to the forefront of cybersecurity challenges. The startling pace and sophistication of these attacks have...

Rockwell Automation’s Lifecycle Services—with key offerings powered by VMware—have become foundational in modernizing industrial infrastructures, integrating both critical manufacturing systems and advanced cybersecurity managed services at global scale. Yet as these digital transformation...

Artificial intelligence (AI) is revolutionizing industries, offering unprecedented opportunities for innovation and efficiency. However, this rapid adoption also introduces significant risks, particularly when AI systems are deployed without robust governance frameworks. Microsoft's "Guide for...

In a rapidly evolving cybersecurity landscape, defenders continually play catch-up as threat actors devise innovative ways to evade detection, exploit trust, and steal sensitive information. A recent revelation by cybersecurity researchers highlights a sophisticated phishing campaign targeting...

Identity has rapidly become the new battleground in the fight for organizational security, especially as cybercriminals innovate to sidestep robust perimeter defenses. While firewalls, endpoint protection, and phishing detection continuously improve, attackers are leveraging stolen or...

In a digital landscape increasingly defined by sophisticated and relentless cyberattacks, the stakes for protecting sensitive data have never been higher. High-profile breaches continue to make headlines, regulations become stricter, and the financial and reputational costs of a data leak can...

Securing modern web platforms remains one of the most complex challenges for organizations, regardless of size or sector. With the rapid proliferation of low-code solutions like Power Pages, the challenge only grows as more non-expert users become responsible for workplace applications, many of...

Large language models are propelling a new era in digital productivity, transforming everything from enterprise applications to personal assistants such as Microsoft Copilot. Yet as enterprises and end-users rapidly embrace LLM-based systems, a distinctive form of adversarial risk—indirect...

The cybersecurity landscape for industrial control systems (ICS) continues to evolve at a rapid pace, with new vulnerabilities emerging as digital transformation penetrates operational environments. On July 29, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) took another...

Microsoft is heralding a new era for enterprise identity security with the general availability of linkable token identifiers in Entra ID, the latest upgrade to its modern identity platform. This innovation is designed to combat one of the most persistent challenges in cybersecurity: the...

In an era where cyber threats evolve each day and security teams struggle to stay ahead of ever-morphing attack vectors, BitLyft’s latest release of its AIR® platform signals a fundamental shift in the very nature of incident response for Windows-centric environments. BitLyft AIR, now...