SOCRadar? Extended Threat Intelligence

?? ???? Spain’s Cyber Threat Landscape 2025: Key Insights Cybercriminals are increasingly targeting retail, finance, and e-commerce sectors in Spain, with over 35% of attacks hitting these industries. Ransomware, phishing, and dark web activities continue to evolve, posing significant risks to organizations. ?? Ransomware: Manufacturing remains the top target, with #RansomHub leading attacks. ?? Phishing: Banking is the most affected, making up 47.47% of incidents. ?? Dark Web: Stolen credentials, government database breaches, and illicit access sales are on the rise. ?? Data breaches account for nearly 47% of cyber threats, reinforcing the need for stronger security measures and proactive threat intelligence. ?? Stay ahead of cyber threats – read the full report: https://lnkd.in/ekEcqhUB #CyberSecurity #ThreatIntelligence #Spain #Ransomware #Phishing #DarkWeb

SOCRadar is heading to Black Hat Asia 2025! We’re excited to announce that SOCRadar will be participating in Black Hat Asia 2025. Our team of cybersecurity experts will be there to share insights, discuss the latest threats, and showcase how we’re helping businesses stay secure in an ever-evolving landscape. Meet us there and learn how we can help protect your organization from emerging threats! #BlackHatAsia2025 #CyberSecurity #SOCRadar #ThreatIntelligence #CyberProtection #APACCyber

?? #GitHub Supply Chain Attack – #CISA Issues Alert! ?? A high-severity flaw (CVE-2025-30066, CVSS 8.6) in tj-actions/changed-files has been exploited to steal secrets like #AWS keys, GitHub tokens, and private RSA keys. The attack, linked to a broader #supplychain compromise, manipulates CI/CD workflows to leak sensitive data. ?? Attackers used a compromised GitHub Personal Access Token (PAT) to inject malicious code into repositories. ?? Affected? Update to tj-actions/changed-files v46.0.1 by April 4, 2025. ?? Mitigate risk: Audit past workflows, rotate secrets, and pin GitHub Actions to commit hashes instead of version tags. ?? Stay ahead of emerging cyber threats with SOCRadar XTI. Get real-time insights into supply chain attacks, #vulnerabilities, and threat actor activity. https://lnkd.in/d8MKuxvK #CyberSecurity #SupplyChainSecurity #DevSecOps #ThreatIntel #GitHubSecurity

?? Windows Shortcut Zero-Day Exploited Since 2017! ?? State-backed APTs from North Korea, Iran, Russia, and China have secretly used ZDI-CAN-25373 for years, targeting governments, finance, telecom, and defense. This Windows shortcut exploit allows stealthy execution of malicious commands, bypassing detection. ?? No patch from Microsoft! Organizations must take immediate action: ?? Restrict .lnk file execution from untrusted sources ?? Strengthen endpoint protection against hidden command-line execution ?? Monitor network activity for suspicious shortcut behavior Stay ahead with SOCRadar’s XTI and get the latest insights: ?? Read more: https://lnkd.in/dHuKc7FQ #CyberSecurity #ZeroDay #ThreatIntel #APT #WindowsExploit

?? Master Threat Intelligence & Build Hyper-Resilient Cyber Defense! ?? In today's ever-evolving threat landscape, securing hybrid and multi-cloud environments is more critical than ever. Join us for an exclusive SOCRadar webinar, where Ali Marwani, Senior Solutions Engineer, will discuss the role of Threat Intelligence in modern cybersecurity strategies. ?? Date: March 25, 2025 (Tuesday) ? Time: 11:00 AM ET ?? Speaker: Ali Marwani Don't miss this chance to stay ahead of cyber threats! Secure your spot now ?? https://lnkd.in/dHpBjhTf #CyberSecurity #ThreatIntelligence #CloudSecurity #MultiCloud #CyberDefense

?? Apache Tomcat #RCE Vulnerability (CVE-2025-24813) Under Active Exploitation! A serious Remote Code Execution (RCE) flaw in Apache Tomcat is being actively exploited, allowing attackers to fully compromise servers via PUT and GET request manipulation. ?? ?? Active attacks detected before public PoC release ?? Red Hat rates it high severity (CVSS 8.6) ?? Exploits bypass many security defenses Organizations using Tomcat 9, 10, or 11 must upgrade immediately to patched versions! ??? ?? Full article : https://lnkd.in/d9PDYJmK #CyberSecurity #ApacheTomcat #ThreatIntel? #DataBreach #PatchNow

?? Cybersecurity is a team sport! Just like a perfect assist leads to an easy bucket, SOCRadar delivers the right threat intelligence at the right time—helping security teams score big against cyber threats! ?? The perfect play for cybersecurity defense! Are you ready to win the game? ?? Test your domain name for free now ?? https://lnkd.in/dYUZ-eJa #CyberSecurity #CyberThreatIntelligence #darkweb #cyberthreats

We’re excited to announce that John Williamson, SOCRadar’s VP of Sales for North America, will be speaking at the Mid-America Trucking Show 2025 in Kentucky, USA, from March 27-29! John will share insights on “Turning the Tide on Freight Fraud with Extended Threat Intelligence”, discussing how the industry can use threat intelligence to combat freight fraud and strengthen cybersecurity. Save the Date: March 27-29, 2025 Location: Kentucky, USA #Trucking #CyberSecurity #FreightFraud #ThreatIntelligence #SOCRadar #MidAmericaTruckingShow

?? Major Cyber Attacks in Review: February 2025 Cyber threats hit hard last month – #Qilin ransomware disrupted Lee Enterprises, #Lazarus Group stole $1.5B from #Bybit, and major breaches targeting Orange, LANIT & DISA Global were revealed. ???? From #media & #finance to #telecom & #healthcare, no sector was spared. These attacks reveal rising #ransomware risks, #supplychain vulnerabilities & financial cybercrime. ?? ?? Read more: https://lnkd.in/dUgTccXe #CyberSecurity #DataBreach #ThreatIntel #Ransomware #DarkWeb

?? Dark Web Threats on the Rise ???♂? SOCRadar’s Dark Web Team uncovered new cyber threats, including massive data breaches, unauthorized access sales, and leaked credentials across industries. ?? From millions of customer records in the #AUTOSUR breach to stolen login details for platforms like #Disney+, cybercriminals continue to exploit personal and financial data. ?? With growing risks in supply chains, financial fraud, and identity theft, organizations must stay vigilant. Real-time threat intelligence is key to proactive defense. ?? Full article: https://lnkd.in/dJfE9iQc #CyberSecurity #DarkWeb #ThreatIntelligence #DataBreach