Security Operations

The Voice of Cyber®

Security Operations

Security Operations encompasses the processes, technologies, and personnel responsible for monitoring and responding to security incidents. Security Operations Centres (SOCs) play a central role in this domain, leveraging advanced tools and methodologies to detect, analyse, and mitigate potential cyber threats in real-time. Security Operations involves continuous monitoring of networks, systems, and applications, as well as incident response activities to address and neutralise security incidents promptly.

Newest Release

RedCurl’s Ransomware Debut

from Bitdefender | March 27, 2025 | Reports & Predictions, Security Operations, Threat Intelligence

Introduction This research, conducted by Bitdefender Labs, presents the first documented analysis of a ransomware campaign attributed to the RedCurl group (also known as Earth Kapre or Red Wolf). RedCurl has historically maintained a low profile, relying heavily on Living-off-the-Land (LOTL) techniques for corporate cyberespionage and data exfiltration. This shift to ransomware marks a significant evolution in its tactics. This new ransomware, which we have named QWCrypt based on a self-reference ‘qwc’ found within the executable, is previously undocumented and distinct from known ransomware families. By sharing our findings with the threat intelligence community and challenging existing ...

No results found.

Deep Dive Articles

Why Identity Management is Critical for Effective IT Security

By Scott Hesford | March 22, 2024 | Identity & Access Management | Security Operations

Organisations should follow several key steps to ensure that identity credentials are secure and user authorisations are appropriate.

CyRC Vulnerability Advisory: CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling

By The Production Team | March 22, 2024 | Network Security | Security Operations | Threat Intelligence

IP address spoofing involves creating Internet Protocol (IP) packets with a fake source IP address. This is typically done with the intention of deceiving the recipient into ...

Reputational Risk, Ransomware and the ‘Operational Resilience’ Imperative

When organisations are hit by ransomware attacks and business operations go down, there’s often a rush to blame. Who’s responsible? Who should resign? Less often is the ...

How To Build A Successful Data Security Strategy

By Jason Whyte | March 7, 2024 | Data Management | Security Operations

Businesses once managed limited data, stored in physical formats or on local servers. Today, data has grown exponentially in volume, variety, and accessibility, seamlessly ...

Detecting Script-Based Attacks Against SAP

By Christoph Nagy | March 5, 2024 | Application Security | Security Operations

Cyberattacks against SAP systems have become more common with SAP customers generating 87% of total global commerce ($46 trillion), according to SAP.com. Attackers gain ...

How AI Can Advance Your SAP Security Posture

By Christoph Nagy | March 5, 2024 | Application Security | Artificial Intelligence | Security Operations

This article explores AI’s role in SAP Security, highlighting some SAP security platform challenges and the importance of system hardening against exploit chains within SAP ...

No results found.

Podcasts On Security Operations

No results found.

Explore Podcast Archive

Independent Cyber News.

The Voice of Cyber®

Newest Release

RedCurl’s Ransomware Debut

Deep Dive Articles

Why Identity Management is Critical for Effective IT Security

CyRC Vulnerability Advisory: CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling

Reputational Risk, Ransomware and the ‘Operational Resilience’ Imperative

How To Build A Successful Data Security Strategy

Detecting Script-Based Attacks Against SAP

How AI Can Advance Your SAP Security Posture

In The News

Fastly Empowers Organisations to Prioritise Security Without Disrupting End-User Experiences

Shedding Light On the ABYSSWORKER Driver

Splunk Survey Highlights Financial Impact of Cybersecurity Downtime for ANZ Businesses

Cloudflare Expands Threat Intelligence Offering with New Comprehensive, Real-time Events Platform

Elastic Expands Partnership with Tines to Simplify Security and Observability Workflow Automation

A Million Phishing-as-a-Service Attacks In Two Months Highlight A Fast-evolving Threat – Barracuda Report

Business News

Tech News

National Security News

Other Resources

Our Podcasts

Partner With KBI

Content Production

Business News

Tech News

National Security

KBI.FM - The Cyber Podcast Network

Threats & Reports