Operation Escaneo Signals Shift in LatAm Threat Landscape
The threat group's curious business model may combine opportunistic monetization alongside intel collection, without much coordination between the two.
Threat landscape analysis maps cyber risks, adversary methods, and exposed weaknesses to help assess security priorities and potential impact.
Search across headline titles and summaries.
Background for this topic.
The threat landscape is the changing set of cyber threats, adversaries, techniques, vulnerabilities, and exposed assets that may affect an organization or sector. It covers more than malware: phishing and credential theft, exploitation of internet-facing systems, abuse of cloud identities, supply-chain compromise, and disruptive or extortion-driven attacks can all be relevant. Its value lies in showing which threats are plausible for a particular environment, rather than treating every reported attack as equally important.
Security teams use threat intelligence to connect observed adversary activity with their own assets, technologies, and business processes. This supports vulnerability management by prioritizing flaws that are exposed or actively exploited, while attack-surface monitoring identifies unnecessary public services and privileged accounts. The landscape also guides detection engineering, control testing, and incident-response preparation: teams can decide which behaviors to monitor, which access paths to restrict, and which scenarios require rehearsed containment. Because threats and defensive conditions change, assessments should be refreshed as new vulnerabilities, techniques, and organizational dependencies emerge.
Weekly headline count for the current query.
The threat group's curious business model may combine opportunistic monetization alongside intel collection, without much coordination between the two.
Dark Reading editors reflect on two decades of dramatic change — from perimeter defense to assume-breach strategies — and warn that while AI, cloud, and COVID-19 have transformed the threat landscape, organizations are still failing at fundamental security hygiene that could stop sophisticated attacks in their tracks.
The slower pace of upgrades has the unintended impact of creating a haven for attackers, especially for initial access brokers and ransomware gangs.
Manufacturers are the top target for cyberattacks in 2025 because of their still-plentiful cybersecurity gaps and a lack of expertise.
European organizations face an escalating cyber threat landscape as attackers leverage geopolitical tensions and AI-enhanced social engineering for attacks.
With nearly 47,000 CVEs expected by the end of the year, organizations must balance comprehensive vulnerability management with strategic cyber insurance policy selection to effectively navigate this rapidly evolving threat landscape.
The US National Institute of Standards and Technology updated its Digital Identity Guidelines to match current threats. The document detailed technical recommendations as well as suggestions for organizations.
To be truly resilient in the ever-growing threat landscape, organizations need to balance protection with preparation.
As tensions in the Middle East rise, hacktivist groups are coming out of the woodwork with their own agendas, leading to notable shifts in the hacktivist threat landscape.
A number of major industrial organizations suffered ransomware attacks last quarter, such as PCB manufacturer Unimicron, appliance maker Presto, and more — a harbinger of a rapidly developing and diversifying threat landscape.
Attackers are leveraging the benefits of new technology and the availability of commodity tools, credentials, and other resources to develop sophisticated attacks more quickly than ever, putting defenders on their heels.
The Salt Typhoon attacks underscored the need for unity, innovation, and resilience in the face of an increasingly sophisticated cyber-threat landscape.
Traditional practices are no longer sufficient in today's threat landscape. It's time for cybersecurity professionals to rethink their approach.
Collaboration, care, and proactive planning need to be part of CISO toolboxes as worsening threat environments become the new normal. CISOs need to adjust processes so business innovation can continue.
With the rush to adopt large language models, companies have not thought through all of the security implications to their businesses. Two groups of researchers tackle the questions.
By reviewing the latest risks, organizations can better protect themselves against a dynamic threat landscape — and deploy technologies and policies that keep them better defended.
CISOs can refine their soft skills to help get their cybersecurity best-practices message across. Steps include increasing staff incident-response training and staying current with the threat landscape.
In this Dark Reading News Desk segment, Nick Biasini from Cisco Talos discusses the latest attacker tactics, techniques, and procedures (TTPs).
In this Dark Reading News Desk segment, OPSWAT founder Benny Czarny outlines the threat landscape affecting critical infrastructure sectors.
Events like RSA Conference and Infosecurity Europe provide industry collaboration opportunities required to address the evolving cybersecurity threat landscape.