December 15, 2025 Cyber Threat Intelligence Briefing
This week’s briefing covers: Dive deeper.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Let Data Be Your Guide: The Value of Data Security Posture Management in the Zero Trust Journey
Which is the best aspect to focus on first: network or identity? That’s a question many organizations ask when planning their Zero Trust journey. While both are key pillars to address in a Zero Trust journey, the overarching approach should be to start with your data and let that data be your guide. Data Security Posture Management (DSPM) plays a unique role in enabling businesses to achieve this thanks to its capacity for identifying potentially insecure combinations of identity, access and data.
December 8, 2025 Cyber Threat Intelligence Briefing
This week’s briefing covers.
New AMOS Infection Vector Highlights Risks around AI Adoption
During a recent investigation into AMOS InfoStealer, Kroll Threat Intelligence Team has discovered a troubling new delivery vector that leverages the growing trust users place in AI tools. In this case, attackers leveraged ChatGPT as the source of guidance, tricking victims into initiating the infection, presenting it as a legitimate solution to a common technical problem. Victims were tricked into believing they were running a harmless command to fix a sound issue on their Mac device.
December 1, 2025 Cyber Threat Intelligence Briefing
This week’s briefing covers: Dive deeper.
Paying the Price: Enhancing the Retail Sector's Resilience to Scattered Spider and Cl0p
This is the second in our Retail Resilience series. Check out the first article, Cyber Risk in UK Retail: A Golden Quarter Under Threat Threat actors have retail firmly in their sights. High profile breaches across giants, from Cartier, Co-op and Adidas to Marks & Spencer, underscore just how much is at stake. With sprawling customer data, complex supply chains and relentless digital transformation, the sector is a prime target for sophisticated threat groups.
Shai-Hulud Returns with Mass Credential Theft
Kroll Threat Intelligence is tracking a second wave of ‘Shai-Hulud’ NPM compromises, named as ‘Sha1-Hulud’ (based on the GitHub action name created as well as the public repository description it creates to publish credentials).
November 24, 2025 Cyber Threat Intelligence Briefing
This week’s briefing covers: Dive deeper.
Let's Talk Cyber Resilience E4: Krishna Raja
In this series, we chat with cybersecurity and data resilience leaders from Kroll and our partners. This week’s guest is Krish Raja, Global Head of Offensive Security. Future episodes will cover topics such as the Cyber Threat Landscape, AI Risk Governance and Operational Technology.
From Blind Spots to Resilience: Why Visibility Is the Foundation of OT Security
In today’s industrial environments, the single biggest barrier to securing operations is not technology, not budget, not even talent–it’s visibility. You cannot protect what you cannot see. In Operational Technology (OT), visibility has two dimensions: Without this combined view, organizations are left guessing where their crown jewels sit, how traffic flows across the environment and where vulnerabilities or attack paths may hide.