#security-operations

#security-operations

AI-enabled supply chain attacks are exploding in scale and sophistication - Malicious package uploads to open-source repositories jumped 156% in the past year. AI-generated malware has game-changing characteristics - It's polymorphic by default, context-aware, semantically camouflaged, and temporally evasive. Real attacks are already happening - From the 3CX breach affecting 600,000 companies to NullBulge attacks weaponizing Hugging Face and GitHub repositories.

A comprehensive survey of 282 security leaders at companies across industries reveals a stark reality facing modern Security Operations Centers: alert volumes have reached unsustainable levels, forcing teams to leave critical threats uninvestigated. You can download the full report here. The research, conducted primarily among US-based organizations, shows that AI adoption in security operations has shifted from experimental to essential as teams struggle to keep pace with an ever-growing stream of security alerts.

Britain is set to welcome Donald Trump for a historic second state visit this week. The King will host the US president and his wife, first lady Melania Trump, at Windsor Castle, where they will be feted with a ceremonial welcome, a 150-guest state banquet, and a flypast by the Red Arrows and UK and US F-35 military jets. The Trumps are due to arrive at the castle's private estate on Tuesday evening,

CrowdStrike and Meta are jointly introducing CyberSOCEval, a new suite of open source benchmarks to evaluate the performance of AI systems in security operations. The collaboration aims to help organizations select more effective AI tools for their Security Operations Center. Meta and CrowdStrike are addressing a growing challenge by introducing CyberSOCEval, a suite of benchmarks that help define what effective AI looks like for cyber defense. The system is built on Meta's open source CyberSecEval framework and CrowdStrike's frontline threat intelligence.

The metrics we often call vanity metrics aren’t just for show; they often reflect teams' limited scope for measurement in the evolving data-driven security landscape.

Syrian authorities reported that they have killed three ISIL fighters and arrested four others in a coordinated operation in Aleppo, marking a significant action against the group.

The U.S. Embassy promptly clarified that the individuals in the photo were actually Mexican agents, not U.S. law enforcement, to ease rising tensions.