Threat intelligence stories

Sygnia links 150+ domains to a global recovery-scam ring posing as law firms, using WhatsApp and cloned sites to repeatedly target victims.

Flare reports 114% annual growth among MSSPs as providers consolidate threat intelligence tools to boost services without extra analyst strain.

Palo Alto overhauls NextWave to reward partners building AI-driven security platforms and services over traditional product sales volume.

DigiCert warns UltraDNS DDoS attacks spiked to record levels in December 2025, driven by massive Aisuru and Kimwolf botnets.

Arctic Wolf has been chosen as Chubb’s preferred MDR partner, tying cyber cover to continuous security monitoring for larger policyholders.

OpenAI unveils GPT-5.3-Codex, a faster coding agent that extends Codex into a supervised, general computer-use and cybersecurity tool.

Cohesity deepens Google Cloud partnership to bake threat intel and sandbox scanning into backup, tackling stealthy malware in stored data.

Searchlight Cyber has promoted former product chief Michael Gianarakis to CEO as founder Ben Jones moves to a strategic board role.

Callback phishing jumps sixfold as BEC fraud stays dominant, with criminals weaponising CAPTCHAs, trusted brands and cloud platforms.

As most ransomware strikes after hours, small firms face a costly 3 AM security gap that only round-the-clock MDR can realistically close.

Cybersecurity as a Service market forecast to soar from USD $17.60bn in 2024 to USD $83.96bn by 2034, driven by threats and skills gaps.

Infostealer attacks are increasingly compromising enterprise SSO, with Flare warning 16% of late-2025 infections exposed identity access.

Hackers are hijacking ageing home routers worldwide, covertly rewiring DNS to quietly cash in on everyday web browsing traffic.

Lateral movement now eclipses zero-day exploits as the top cyber risk, Zero Networks warns, with attacks able to hit 60% of systems in an hour.

Dragos expands its Microsoft partnership to run OT security on Azure, integrate with Sentinel and offer SaaS from Q1 2026.

Ignored ‘low-risk’ security alerts are seeding real enterprise breaches, with Intezer warning of dozens of overlooked threats each year.

Okta users face rising vishing attacks as ShinyHunters expand real-time MFA phishing, prompting fresh SaaS and identity security warnings.

London-based Intruder posts 81% surge in enterprise ARR as AI, cloud security and consolidation drive midmarket and enterprise demand.

Black Kite debuts ThreatTrace, harnessing NetFlow and DNS telemetry to reveal hidden third‑party compromises and sharpen cyber risk ratings.

Ransomware gangs are stepping up efforts to recruit insiders, warns NCC Group, as December 2025 attacks jump 13% to 784 globally.