Security news aggregator

Latest coverage for Lateral Movement

Stay informed on the latest trends and defenses against lateral movement attacks in cybersecurity. Expert insights on preventing unauthorized access.

101 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Lateral Movement is a cybersecurity threat technique that enables attackers to navigate through a network after gaining initial access. Within the context of information security, it represents the processes and actions that an attacker uses to explore and exploit a network, moving stealthily from one system to another.

After acquiring credentials or exploiting vulnerabilities within one part of a system, adversaries often seek to increase their foothold by accessing other areas of the network. The goal is to find sensitive data or assets and gain higher levels of permission that could allow for further control or to cause a significant breach. Detecting lateral movement is challenging because the tactics used often mimic legitimate user behavior, requiring advanced security tools and vigilant monitoring to identify and mitigate these threats. Security measures such as network segmentation, monitoring of unusual activities, and strict access controls are critical in defending against lateral movement within an organization's infrastructure.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 101 Filtered view
Microsoft Security Research 6 days, 8 hours ago

The Gentlemen ransomware: Dissecting a self-propagating Go encryptor

Microsoft Threat Intelligence presents a comprehensive analysis of The Gentlemen, a Go-based ransomware deployed by affiliates of Storm-2697 that combines per-file ephemeral key encryption with an aggressive self-propagation module to deploy itself across an entire network using series of simultaneous lateral movement techniques per target. The post The Gentlemen ransomware: Dissecting a self-propagating Go encryptor appeared first on Microsoft Security Blog.

More from Microsoft Security Research 29 May 2026, 3:00 a.m. Encryption Lateral Movement Microsoft Ransomware

A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence server for credential theft and identity compromise. Learn how the threat actor attempted Kerberos relay and lateral movement, and how Microsoft Defender detected, blocked, and unraveled the attack. The post From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence appeared first on Microsoft Security Blog.

More from Microsoft Security Research 23 May 2026, 4:53 a.m. Incident · 3 stories Antivirus Blocked Compromise Credentials Exposure F5 Lateral Movement Linux Microsoft Theft Threat Actor
Bank Info Security 1 month, 3 weeks ago

US Critical Infrastructure Facing Iranian-Linked OT Threats

CISA: Iran-Linked Groups Actively Exploiting OT Exposure Risks, PLC ProgrammersFederal agencies are warning that Iranian-linked actors have begun actively exploiting internet-facing PLCs and misconfigured OT systems across U.S. critical infrastructure, enabling network access, lateral movement and potential disruption amid rising geopolitical tensions.

More from Bank Info Security 8 Apr 2026, 10:00 a.m. Incident · 6 stories America CISA Critical Critical Infrastructure Exposure Iran Lateral Movement Misconfiguration Operational Technology Outage Warning
Bank Info Security 2 months, 1 week ago

LiteLLM Hit in Cascading Supply-Chain Attack

Stolen Credentials From Trivy Breach Let Hackers Push Malware to PyPIThreat group TeamPCP exploited credentials stolen in the Trivy breach to push malicious versions of LiteLLM to PyPI, exposing developers to credential theft, persistent backdoors and lateral movement tools within hours of publication.

More from Bank Info Security 27 Mar 2026, 11:00 a.m. Breach Credentials Lateral Movement Malware Supply Chain Theft Tools

In September 2025, Anthropic disclosed that a state-sponsored threat actor used an AI coding agent to execute an autonomous cyber espionage campaign against 30 global targets. The AI handled 80-90% of tactical operations on its own, performing reconnaissance, writing exploit code, and attempting lateral movement at machine speed

More from The Hacker News 26 Mar 2026, 12:58 a.m. Artificial Intelligence Disclosure Exploit Incident Lateral Movement Nation State Threat Actor

TeamPCP, the threat actor behind the recent compromises of Trivy and KICS, has now compromised a popular Python package named litellm, pushing two malicious versions containing a credential harvester, a Kubernetes lateral movement toolkit, and a persistent backdoor

More from The Hacker News 25 Mar 2026, 7:21 a.m. Backdoor Compromise Credentials Kubernetes Lateral Movement Python Threat Actor
Bank Info Security 3 months, 2 weeks ago

GitGuardian Doubles Down on AI Agent Defense With $50M Raise

Series C Funding Round Focuses on Secrets Remediation, Agent Governance ExpansionBacked by a $50 million Series C, GitGuardian plans to accelerate U.S. expansion and enhance secrets detection remediation and non-human identity controls as AI agents multiply across enterprises, increasing exposure to credential abuse and lateral movement.

More from Bank Info Security 18 Feb 2026, 12:00 p.m. Abuse America Artificial Intelligence Credentials Exposure Lateral Movement

Microsoft has revealed that it observed a multi‑stage intrusion that involved the threat actors exploiting internet‑exposed SolarWinds Web Help Desk (WHD) instances to obtain initial access and move laterally across the organization's network to other high-value assets

More from The Hacker News 10 Feb 2026, 3:42 a.m. Antivirus Exposure Initial Access Lateral Movement Microsoft Remote Code Execution Research Threat Actor