incident response Archives

How ‘silent probing’ can make your security playbook a liability

Silent probing uses AI to measure your team’s response patterns over time, building a behavioral profile that makes follow-on attacks harder to spot and easier to time.

6 days ago By Dimitrios Bougioukas

Unit 42: Nearly two-thirds of breaches now start with identity abuse

Palo Alto Network’s incident response firm said identity-based attacks are exploding as poor security controls stretch across a widening mosaic of integrated tools and systems.

Feb 17, 2026 By Matt Kapko

Cybersecurity abstract — (iStock / Getty Images Plus)

Former incident responders plead guilty to ransomware attack spree

Ryan Goldberg and Kevin Martin were working at cybersecurity companies when they switched sides and hit five companies with ransomware attacks in 2023.

Dec 19, 2025 By Matt Kapko

Prosecutors allege incident response pros used ALPHV/BlackCat to commit string of ransomware attacks

The alleged cybersecurity turncoats attacked at least five U.S. companies while working for their respective employers, officials said.

Nov 3, 2025 By Matt Kapko

A corporate logo for Microsoft hangs above the door to its office building on 8th Avenue on June 24, 2025, in New York City. (Photo by Gary Hershorn/Getty Images)

Microsoft: An organization without a response plan will be hit harder by a security incident

Security leaders shared advice gleaned from customer engagements, and reinforced the importance of planning and following fundamentals for defense.

Aug 8, 2025 By Matt Kapko

Palo Alto Networks headquarters in Silicon Valley; Palo Alto Networks, Inc. is an American multinational cyber security company. (Getty Images)

Social engineering attacks surged this past year, Palo Alto Networks report finds

Unit 42 said social engineering — the method of choice for groups as diverse as Scattered Spider and North Korean tech workers — was the top initial…

Aug 1, 2025 By Matt Kapko

President Donald Trump answers questions while departing the White House on July 11, 2025 in Washington, D.C. (Photo by Win McNamee/Getty Images)

Trump AI plan pushes critical infrastructure to use AI for cyber defense

It also builds on previous efforts to promote “secure by design” principles in AI systems and tools.

Jul 23, 2025 By Derek B. Johnson

Amazon’s Chief Security Officer Stephen Schmidt, center, talks with Danielle Ruderman, Senior Manager, Worldwide Security Specialists, AWS, and Lakshmi Raman, Chief Artificial Intelligence Officer for the Central Intelligence Agency, at the AWS Summit in Washington, D.C. on June 10, 2025. (Photo Courtesy of AWS)

How Amazon Web Services uses AI to be a security ‘force multiplier’

Amazon CSO Stephen Schmidt says AI is transforming the way the company does security reviews and incident response.

Jun 11, 2025 By Greg Otto

Threat actors are increasingly trying to grind business to a halt

Palo Alto Networks’ threat intelligence firm said nearly 9 in 10 cyberattacks it responded to last year involved disrupted business operations.

Feb 25, 2025 By Matt Kapko

The seals of the U.S. Cyber Command, the National Security Agency and the Central Security Service greet employees and visitors at the campus the three organizations share March 13, 2015 in Fort Meade, Maryland. The National Security Agency today released an advisory to the defense sector detailing APTs. (PHOTO: Chip Somodevilla/Getty Images)

Hackers maintained deep access inside military organization’s network, U.S. officials reveal

A U.S. government cybersecurity advisory includes details about the sophisticated attack on an unnamed defense industrial base organization.

Oct 4, 2022 By Suzanne Smalley