Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Featured Post

Anthropic and The Monster Outside the Fable

The reports surrounding Anthropic's Mythos 5 and Fable 5 have generated the usual reactions. Some see a necessary security measure and others see government overreach. Anthropic has disputed portions of the reporting and pushed back that the models represent an extraordinary threat. And now we're in a familiar grey area that is Anthropic models.

Veil#Drop: Blogspot-Hosted PowerShell Loader

Veil#Drop is a sophisticated multi-stage malware delivery framework that combines social engineering, compromised websites, malicious JavaScript launchers, PowerShell download cradles, and trusted cloud-hosted infrastructure to deploy PureLog Stealer entirely in memory. The infection chain begins with a deceptively named JavaScript file masquerading as a document (e.g., transcript.pdf.js), which executes through Windows Script Host and launches PowerShell with execution policy bypasses enabled.

Data on The Frontline: How Geopolitical Tensions Change Cybersecurity

Chris Jacob, Field CISO, Securonix There is a particular kind of unease that comes with geopolitical tension. It rarely arrives for security teams as one clean, obvious event. More often, it shows up as a change in tempo across the environment. Scanning increases and phishing attempts feel sharper. Then you start having leadership asking harder questions about exposure, suppliers, regions, and sensitive data.
Featured Post

The AI Data Centre Buildout Has a Security Problem

In recent months, there has been plenty of speculation about whether the industry is in the middle of an "AI bubble," often fuelled by questions about whether massive infrastructure investments are matched by real demand. Yet current developments suggest this is not the case: the ecosystem around AI continues to expand at a pace that indicates longterm structural change rather than shortterm hype.

Analyzing SHEET#CREEP: SHEETCREEP is up again with different config obfuscation

The Securonix Threat Research team has identified an ongoing espionage campaign, tracked as SHEETCREEP, where threat actors deliver a C# remote access trojan through a diplomatic-themed ISO phishing lure.

Securonix (ThreatQ) positioned as a Leader in the SPARK Matrix: Digital Threat intelligence Management, 2026 by QKS Group

The QKS Group SPARK Matrix™ provides competitive analysis & ranking of the leading DTIM vendors. Securonix (ThreatQ), with its comprehensive platform, has received strong ratings across technology excellence and customer impact.

Analyzing TAX#TRIDENT: Fake Indian Tax Lures Pivot Across ZIP, VBS, Stego and PHP-Wrapped VBS Delivery

Securonix Threat Research tracks TAX#TRIDENT, an active fake Indian Income Tax-themed campaign that uses three delivery paths to reach Windows endpoints. The campaign starts with fake tax assessment lures and then moves victims toward ZIP files, VBScript downloaders, or PHP-looking web endpoints that actually return script content.