Advanced Threat Detection Managed Security Service (#MSSP) powered by #MachineLearning tech giving businesses visibility of their #cyber #threat landscape.
Joined January 2014
- Tweets 2,784
- Following 900
- Followers 710
- Likes 514
715 Photos and videos
Jun 11
MFA isn’t foolproof.
Legacy auth can still be used to bypass controls and persist in M365 environments.
Quick walkthrough detection tips from Cyberseer
(Now the Redsquid #SOC)👇
eu1.hubs.ly/H0w3V2T0
#CyberSecurity #MFA #M365
18
A new Tropic Trooper campaign abuses trojanised apps, VS Code tunnels & GitHub‑based C2 to stay hidden. When attackers blend into trusted tools early detection depends on continuous monitoring, not signatures alone.
đź”— eu1.hubs.ly/H0vj1vw0
#ThreatIntel #SOC #MDR #CyberSecurity
31
May 29
DFIR Report details how EtherRAT and TukTuk C2 activity ultimately led to Gentleman ransomware deployment. A clear example of how early‑stage malware, if missed, can quickly escalate into major business disruption.
đź”— eu1.hubs.ly/H0vzj7M0
#ThreatIntel #Ransomware #SOC
41
May 28
Attackers are moving faster and blending in.
The @CrowdStrike 2026 Global Threat Report, shared by your CrowdStrike partner, breaks down what this means for defenders.
đź”— eu1.hubs.ly/H0vzmHG0
#ThreatIntelligence #CyberResilience #CISO
9
May 27
TeamPCP & BreachForums reportedly launch a $1,000 Monero contest targeting open‑source supply chains.
Low cost. High impact. Real‑world risk.
👉 eu1.hubs.ly/H0vzjjY0
#CyberSecurity #SupplyChainSecurity #ThreatIntel #OpenSource
162
May 25
Elastic Security Labs detail how attackers can quietly abuse vaulted secrets & credentials to persist in cloud environments. A reminder that identity & secrets management failures often drive the biggest breaches.
đź”— eu1.hubs.ly/H0vzmJw0
#CloudSecurity #IdentitySecurity #SOC
13
May 21
As a CrowdStrike partner, we recommend the 2026 Global Threat Report. A clear view of how attackers exploit the gap between detection and response. Minutes matter.
đź”— eu1.hubs.ly/H0vj2HJ0
#CrowdStrikePartner #SOC #MDR
8
May 20
CrowdStrike outlines how organisations can defend against Cordial Spider & Snarky Spider by reducing attacker dwell time and preventing lateral movement with proactive endpoint protection.
đź”— eu1.hubs.ly/H0vhTT00
#ThreatIntel #EndpointSecurity #CyberResilience #SOC
44
May 19
AI agents are powerful fast becoming a new attack surface? ⚡
We’re partnering with @Darktrace to explore what effective defence in depth looks like for the age of AI
🛡️ Defence in Depth for the Age of AI
đź“… May 27 | 12pm BST
👇 Secure your spot
#AIsecurity #CyberSecurity
1
21
May 18
Researchers have uncovered 73 malicious, cloned VS Code extensions distributing GlassWorm v2, a cross‑IDE malware capable of stealing credentials & persisting across dev environments.
đź”— eu1.hubs.ly/H0vhRtl0
#ThreatIntel #SupplyChainSecurity #SOC
1
1
36
May 14
Proud CrowdStrike partner sharing the 2026 Global Threat Report. Faster breakout times, AI‑enabled attacks, and growing cloud & identity abuse show why speed now defines cyber resilience.
đź”— eu1.hubs.ly/H0vj3p30
#CrowdStrike #ThreatIntel #CyberSecurity
1
21
May 13
CISA has issued an alert on a supply‑chain compromise impacting the Axios Node Package Manager. A timely reminder to review dependency trust and monitoring controls.
đź”— eu1.hubs.ly/H0vhQp50
#CyberSecurity #SupplyChainSecurity #AppSec #SOC
42
Dataminr flags an unprecedented ransomware model: Vect BreachForums TeamPCP.
Supply‑chain‑sourced credentials mass affiliate mobilisation = #ransomware at industrial scale.
Initial access is cheap. Monetisation is fast.
đź”—eu1.hubs.ly/H0tSfcv0
#ThreatIntel #SecOps
221
Apr 30
Vercel discloses an April 2026 incident tied to a compromised third‑party AI tool.
No npm supply‑chain impact, but env vars were exposed — proof that identity third‑party failures escalate fast.
Rotate creds. Enforce MFA.
đź”— eu1.hubs.ly/H0tS8dv0
#CloudSecurity #SecOps
23
Apr 29
Google now penalises “back button hijacking” as malicious.
For security teams, this isn’t just UX — the same browser manipulation techniques appear in phishing funnels and malvertising.
Deceptive web behaviour = security signal.
đź”— eu1.hubs.ly/H0tS6JG0
#CyberSecurity
12
Apr 27
Second Windows Defender zero‑day dropped just hours after the last patch. “RedSun” lets low‑priv access jump straight to SYSTEM by abusing Defender itself. This is why SOCs focus on post‑exploitation, not just prevention
eu1.hubs.ly/H0tS85Q0
#ThreatDetection #CyberSecurity
47
Apr 24
A screensaver isn’t just cosmetic
Our SOC analysed a multi‑stage RAT using a malicious .scr file, curl 7zip, and stealthy persistence to stay hidden.
Detection came down to behaviour, not signatures
👇
eu1.hubs.ly/H0tQqXv0
#Cyberseer - Redsquid #SOC
#ThreatDetection #RAT
60
Apr 22
Supply‑chain attacks don’t look suspicious. They look normal.
CPUID was compromised, pushing malware via legitimate CPU‑Z & HWMonitor installers.
➤ Trusted ≠safe
➤ Monitor behaviour post‑install
➤ Detect fast, contain faster
Read 👇
eu1.hubs.ly/H0ttQm10
#SupplyChain #SOC
84