Latest Posts

Analyzing SHEET#CREEP: SHEETCREEP is up again with different config obfuscation

Jun 11, 2026 By Shikha Sangwan, Akshay Gaikwad, Aaron Beardslee In Securonix

The Securonix Threat Research team has identified an ongoing espionage campaign, tracked as SHEETCREEP, where threat actors deliver a C# remote access trojan through a diplomatic-themed ISO phishing lure.

Read Post

Securonix

Read more about Analyzing SHEET#CREEP: SHEETCREEP is up again with different config obfuscation

Securonix and GRAMAX Cybertech Partner to Scale Managed Cyber Defense Across India's Critical and Regulated Industries

May 28, 2026 By Securonix In Securonix

Partnership combines AI-driven detection, response, and managed cyber defense to help enterprises strengthen resilience and compliance readiness.

Read Post

Securonix

Read more about Securonix and GRAMAX Cybertech Partner to Scale Managed Cyber Defense Across India's Critical and Regulated Industries

Securonix (ThreatQ) positioned as a Leader in the SPARK Matrix: Digital Threat intelligence Management, 2026 by QKS Group

May 28, 2026 By Securonix In Securonix

The QKS Group SPARK Matrix™ provides competitive analysis & ranking of the leading DTIM vendors. Securonix (ThreatQ), with its comprehensive platform, has received strong ratings across technology excellence and customer impact.

Read Post

Securonix

Read more about Securonix (ThreatQ) positioned as a Leader in the SPARK Matrix: Digital Threat intelligence Management, 2026 by QKS Group

Analyzing TAX#TRIDENT: Fake Indian Tax Lures Pivot Across ZIP, VBS, Stego and PHP-Wrapped VBS Delivery

May 18, 2026 By Chain 1: In Securonix

Securonix Threat Research tracks TAX#TRIDENT, an active fake Indian Income Tax-themed campaign that uses three delivery paths to reach Windows endpoints. The campaign starts with fake tax assessment lures and then moves victims toward ZIP files, VBScript downloaders, or PHP-looking web endpoints that actually return script content.

Read Post

Securonix

Read more about Analyzing TAX#TRIDENT: Fake Indian Tax Lures Pivot Across ZIP, VBS, Stego and PHP-Wrapped VBS Delivery

Securonix Connects Threat Intelligence to Action with AI-Powered Threat Research Agent and ThreatWatch Validation

May 7, 2026 By Securonix In Securonix

Threat Research Agent and ThreatWatch combine AI-driven threat research and exposure validation to help security teams act with confidence.

Read Post

Securonix

Read more about Securonix Connects Threat Intelligence to Action with AI-Powered Threat Research Agent and ThreatWatch Validation

Rethinking Threat Intelligence with the Threat Research Agent

May 7, 2026 By Beth Dannemiller In Securonix

Modern security teams are not lacking data. They are drowning in it. Threat intelligence feeds, indicators, campaigns, internal detections, and investigation artifacts are constantly growing in volume and complexity. Yet when analysts need answers, they are often forced to manually search, pivot, correlate, and interpret across multiple data points. This creates a familiar problem: too much data, not enough clarity.

Read Post

Securonix

Read more about Rethinking Threat Intelligence with the Threat Research Agent

From Threat Awareness to Proof: Closing the Exposure Validation Gap in the Modern SOC

May 7, 2026 By Beth Dannemiller In Securonix

For most organizations, answering these questions is slow, manual, and difficult to defend. Analysts must interpret threat reports, build SIEM queries, run retroactive searches, and validate findings under pressure. The result is delayed answers, inconsistent processes, and limited confidence at the executive level. This is the gap between threat awareness and proof of exposure. It is where operational risk and board-level scrutiny converge.

Read Post

Securonix

Read more about From Threat Awareness to Proof: Closing the Exposure Validation Gap in the Modern SOC

Threat Intelligence is Everywhere, but Proof is Rare.

May 7, 2026 By ?Ben Gibson In Securonix

Every security leader knows the sequence. A new threat breaks; reports start circulating, and within minutes the same questions are moving through the organization. Are we exposed? Does this change our risk? What are we doing about it?

Read Post

Securonix

Read more about Threat Intelligence is Everywhere, but Proof is Rare.

VENOMOUS#HELPER: Dual-RMM Phishing Campaign Leveraging JWrapper-Packaged SimpleHelp and ScreenConnect for Silent Remote Access

May 4, 2026 By Akshay Gaikwad, Shikha Sangwan, Aaron Beardslee In Securonix

Phishing campaigns leveraging remote management tools is nothing new. Securonix Threat Research has conducted in-depth dynamic analysis of an ongoing phishing campaign targeting multiple vectors, active since at least April 2025. The campaign has impacted over 80 organizations, predominantly in the United States, spanning multiple sectors. This campaign leverages vendor-signed Remote Monitoring and Management (RMM) software to establish silent, persistent access.

Read Post

Securonix

Read more about VENOMOUS#HELPER: Dual-RMM Phishing Campaign Leveraging JWrapper-Packaged SimpleHelp and ScreenConnect for Silent Remote Access

Deep#Door Stealer: Stealthy Python Backdoor and Credential Stealer Leveraging Tunneling, Multi-Layer Persistence, and In-Memory Surveillance Capabilities

Apr 29, 2026 By Akshay Gaikwad, Shikha Sangwan, Aaron Beardslee In Securonix

Securonix Threat Research analyzed a stealthy Python-based backdoor framework, dubbed Deep#Door, which uses an obfuscated batch loader to deploy a persistent surveillance and credential-stealing implant on Windows systems.

Read Post

Securonix

Read more about Deep#Door Stealer: Stealthy Python Backdoor and Credential Stealer Leveraging Tunneling, Multi-Layer Persistence, and In-Memory Surveillance Capabilities

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Analyzing SHEET#CREEP: SHEETCREEP is up again with different config obfuscation

Securonix and GRAMAX Cybertech Partner to Scale Managed Cyber Defense Across India's Critical and Regulated Industries

Securonix (ThreatQ) positioned as a Leader in the SPARK Matrix: Digital Threat intelligence Management, 2026 by QKS Group

Analyzing TAX#TRIDENT: Fake Indian Tax Lures Pivot Across ZIP, VBS, Stego and PHP-Wrapped VBS Delivery

Securonix Connects Threat Intelligence to Action with AI-Powered Threat Research Agent and ThreatWatch Validation

Rethinking Threat Intelligence with the Threat Research Agent

From Threat Awareness to Proof: Closing the Exposure Validation Gap in the Modern SOC

Threat Intelligence is Everywhere, but Proof is Rare.

VENOMOUS#HELPER: Dual-RMM Phishing Campaign Leveraging JWrapper-Packaged SimpleHelp and ScreenConnect for Silent Remote Access

Deep#Door Stealer: Stealthy Python Backdoor and Credential Stealer Leveraging Tunneling, Multi-Layer Persistence, and In-Memory Surveillance Capabilities

Monthly Archive

Follow Us