Security news aggregator

Latest coverage for Threat Landscape

Threat landscape analysis maps cyber risks, adversary methods, and exposed weaknesses to help assess security priorities and potential impact.

56 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

The threat landscape is the changing set of cyber threats, adversaries, techniques, vulnerabilities, and exposed assets that may affect an organization or sector. It covers more than malware: phishing and credential theft, exploitation of internet-facing systems, abuse of cloud identities, supply-chain compromise, and disruptive or extortion-driven attacks can all be relevant. Its value lies in showing which threats are plausible for a particular environment, rather than treating every reported attack as equally important.

Security teams use threat intelligence to connect observed adversary activity with their own assets, technologies, and business processes. This supports vulnerability management by prioritizing flaws that are exposed or actively exploited, while attack-surface monitoring identifies unnecessary public services and privileged accounts. The landscape also guides detection engineering, control testing, and incident-response preparation: teams can decide which behaviors to monitor, which access paths to restrict, and which scenarios require rehearsed containment. Because threats and defensive conditions change, assessments should be refreshed as new vulnerabilities, techniques, and organizational dependencies emerge.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 56 Filtered view
The Hacker News 4 months ago

Investigating a New Click-Fix Variant

Disclaimer: This report has been prepared by the Threat Research Center to enhance cybersecurity awareness and support the strengthening of defense capabilities. It is based on independent research and observations of the current threat landscape available at the time of publication. The content is intended for informational and preparedness purposes only

The comfort zone in cybersecurity is gone. Attackers are scaling down, focusing tighter, and squeezing more value from fewer, high-impact targets. At the same time, defenders face growing blind spots — from spoofed messages to large-scale social engineering

CISOs know their field. They understand the threat landscape. They understand how to build a strong and cost-effective security stack. They understand how to staff out their organization. They understand the intricacies of compliance. They understand what it takes to reduce risk. Yet one question comes up again and again in our conversations with these security leaders: how do I make the impact

Cyber threats and attacks like ransomware continue to increase in volume and complexity with the endpoint typically being the most sought after and valued target. With the rapid expansion and adoption of AI, it is more critical than ever to ensure the endpoint is adequately secured by a platform capable of not just keeping pace, but staying ahead of an ever-evolving threat landscape.

The modern-day threat landscape requires enterprise security teams to think and act beyond traditional cybersecurity measures that are purely passive and reactive, and in most cases, ineffective against emerging threats and sophisticated threat actors. Prioritizing cybersecurity means implementing more proactive, adaptive, and actionable measures that can work together to effectively address the

Introduction: Security at a Tipping Point Security Operations Centers (SOCs) were built for a different era, one defined by perimeter-based thinking, known threats, and manageable alert volumes. But today’s threat landscape doesn’t play by those rules. The sheer volume of telemetry, overlapping tools, and automated alerts has pushed traditional SOCs to the edge. Security teams are overwhelmed,

The Hacker News 1 year, 2 months ago

5 Reasons Device Management Isn't Device Trust​

The problem is simple: all breaches start with initial access, and initial access comes down to two primary attack vectors – credentials and devices. This is not news; every report you can find on the threat landscape depicts the same picture.  The solution is more complex. For this article, we’ll focus on the device threat vector. The risk they pose is significant, which is why device

The Hacker News 1 year, 5 months ago

Debunking the AI Hype: Inside Real Hacker Tactics

Is AI really reshaping the cyber threat landscape, or is the constant drumbeat of hype drowning out actual, more tangible, real-world dangers? According to Picus Labs’ Red Report 2025 which analyzed over one million malware samples, there's been no significant surge, so far, in AI-driven attacks. Yes, adversaries are definitely continuing to innovate, and while AI will certainly start playing a

In today’s rapidly evolving threat landscape, safeguarding your organization against cyberattacks is more critical than ever. Traditional penetration testing (pentesting), while effective, often falls short due to its high costs, resource requirements, and infrequent implementation. Automated internal and external network pentesting is a game-changing solution, empowering organizations to stay

Loading more headlines...