Secureworks

Our recent webinar, “Shift Beyond Threat Detection to Proactive Measures,” dove into valuable insights on how orgs can enhance their #MDR strategy. If you missed it live, it's now available on demand. Discover how #AI drives threat detection and response efficiency and learn how to help MDR vendors understand your security priorities. Watch now: https://bit.ly/3DPhlJ0

Defenders and bad actors alike benefit from #AI. As adversaries use AI-powered threats to launch attacks, a formal #cybersecurity plan empowers your team to leverage AI to your advantage and accelerate your response. Download our guide for support:  https://lnkd.in/gfjmVxfa

The top priority in 2025: Outpace cybercriminals. Together, our combined service strengthens our abilities to address persistent cyber threats. Follow Sophos and join us on this exciting journey as we deliver state-of-the-art cybersecurity solutions to safeguard what matters most. Read the whole profile of Sophos’ CEO Joe Levy in CRN: https://bit.ly/3XhNlMe

North Korean cybercriminals are leveraging AI as a sophisticated tool for financial gain — an evolution that poses significant challenges to traditional security measures. “Many cybercriminals prefer online services that are free to sign up for or can be paid for via cryptocurrency. This would likely be true for North Korean IT workers as well,” says Rafe Pilling, director of threat intelligence at Secureworks. Pilling advises companies to educate hiring teams about North Korean fraud tactics and refine #IT recruitment processes. Read more about this growing threat in South China Morning Post SCMP: https://bit.ly/4bP2haJ

Diversity in cybersecurity sharpens our collective cyber senses — bringing sight to unseen threats, hearing to unheard vulnerabilities, and touch to untapped solutions. Together, we're empowered to detect, protect, and respond. This #InternationalWomensDay, we celebrate the distinct perspectives and experiences that make up our expertise. Here's to the resilient #WomenInCyber.

In Episode 5 of Inside the Threat, Secureworks Counter Threat Unit expert Sarah Kern breaks down how North Korean cyber actors infiltrate organizations by getting hired. Individuals from the #DPRK are securing IT roles to gain insider access to corporate networks. Tune in now to discover: 🔍 How these infiltration schemes work 🚩 Red flags hiring teams should watch for 🛑 Preventative steps organizations can take Watch the episode here: https://bit.ly/4hINDEn

Cybercriminals do more than attack systems — they manipulate people. Groups like GOLD HARVEST refined #SocialEngineering into an art, using phone calls, SMS messages, and AI-powered deep fake voices to bypass even strong security measures. Their tactics have led to multimillion-dollar breaches. So how do organizations fight back? "No” needs to be a normal, acceptable response. 🚫 Help desk employees should be empowered to refuse suspicious credential resets 🔍 Every request — no matter how urgent — should be verified 🛑 Employees must feel supported in questioning authority if security is at risk Learn more about the latest threats: https://bit.ly/41yd068

Join our webinar “Shift Beyond Threat Detection to Proactive Measures” on March 4, 2025, at 11 AM EST / 4 PM GMT. Experts Sofia Ali and Bud Ellis will cover how MDR can evolve from detection to proactive #RiskMitigation, the role of AI in strengthening threat response, and the importance of aligning MDR with security priorities for effective protection. Register now: https://bit.ly/4hINDEn

Platform consolidation is a hot topic, but is it always the best move? In the latest Cybercrime Magazine podcast, Secureworks CPO Kyle Falkenhagen joins host Charlie Osborne to explore the advantages of open platforms, the key elements of a strong #SecurityOperations strategy, and how organizations can enhance threat detection and response. Listen now: https://bit.ly/3EM9V9z

LockBit criminal ecosystem.Prior to this disruption, LockBit was the dominant player in the ransomware landscape. So, how does the ransomware landscape look one year on? More, smaller ransomware groups and more victims on leak sites. In January 2025, CTU tracked 605 victims on leak sites by 48 active groups – an 80% increase over the previous year. “The increase through the year in the number of schemes operating is indicative of that fragmentation in the landscape. And it’s important to remember that a victim is named on a leak site when they haven’t paid a ransom, so an increase in victim numbers could mean that the number of victims paying is actually decreasing. But that’s not to say the threat has gone away. Far from it. Although the impact of such attacks on individual victims might be reduced, experiencing a ransomware incident is still a very bad day in the office. Organizations need to be sure that they are implementing strong cybersecurity best practices, such as patching.” – Tim Mitchell, Senior Researcher, Counter Threat Unit, Secureworks, a Sophos Company To read more about the latest trends in ransomware, read our State of Threat Report: https://lnkd.in/eXYJx2Kc