DIAMATIX

March ThreatScope shows a shift in how attacks develop. Not just what is targeted, but how fast it happens. We consistently see: • exploitation within hours after disclosure • targeting of identity systems and AI infrastructure • increased focus on control points, not just entry points Examples: Langflow → exploited within ~20 hours Oracle IAM → path to domain-level control Mobile flaws → targeted operations Supply chain → one entry, multiple victims This changes the equation. Response time becomes a defining factor. 🎧 Audio brief below 🔗 Full monthly analysis in the article: https://lnkd.in/dhUzGvaf #cybersecurity #threatscope #soc #mdr

March 31 marked World Backup Day ☁️ What we keep seeing in real incidents: • Backups exist, but can’t be restored • Access to backups is compromised together with production • Backups are stored in the same environment and get encrypted or deleted during the attack • No clear recovery priorities Backup is about having usable copies when everything else fails. If you haven’t reviewed your recovery approach recently, now is a good moment. 🔗 Explore our Recovery & Operational Resilience series: https://lnkd.in/dSAsn6PJ

This week’s ThreatScope shows a shift that’s easy to miss. The focus is not only on applications. It’s moving into infrastructure and control layers. Containers. VPN access. CI/CD pipelines. Attackers look for control, not just for entry. • runc → container escape to host • Ivanti / Fortinet → direct network entry • Jenkins → access to pipelines and secrets • ActiveMQ → deeper system compromise with low visibility This changes the impact. From single-system compromise to full environment exposure. The priority is understanding where control points exist in your environment. 🎧 Audio brief below Full analysis in the article here: https://lnkd.in/dTgkCRy8 #cybersecurity #threatintel #soc #mdr

What does resilience actually mean in healthcare? Not as a document. Not as technology alone. But as the ability to respond when it actually happens. This was the focus of our recent NIS2 healthcare webinar, which gathered strong interest and participation. We discussed what real preparedness looks like in environments with sensitive data and critical systems, and what the first practical steps toward compliance actually involve. 🎥 Watch Webinar recording: https://lnkd.in/d7-iQJvS 👉 Access the full resources: https://lnkd.in/dj7EUptw

Most MSP environments today detect incidents fast. But response still slows down. Not because of missing tools, not because of poor visibility. What we consistently see in real operations is something else. ❗The delay appears at the moment of decision. When an incident is already clear, teams still pause: • Who is allowed to act? • Should we wait for client approval? • What if the action impacts operations? This is where response time is lost- in decision-making. In our latest MSP Insights article, we break down: • where decision latency appears • why it happens even in mature environments • what actually reduces it in practice Because faster detection does not guarantee faster response. 🔗 Read the full article: https://lnkd.in/dGjjRJzt #MSP #CyberSecurity #SOC #MDR #IncidentResponse #SecurityOperations

This week at DIAMATIX: 🔹 NIS2 in Healthcare. Practical Webinar Focused on Real Implementation A focused session for hospitals and healthcare organizations on how NIS2 translates into real operational requirements. ▶️ Watch & access resources: https://lnkd.in/dj7EUptw 🔹 Device Code Phishing targets Microsoft 365 OAuth abuse enables persistent access without traditional credential theft. 🔹 TA551 case reminder Initial access remains the key entry point behind ransomware operations. 🔹 Trivy supply chain attack expands Impact spreads across Docker, npm, and Kubernetes environments. 📌 The common pattern is clear. Access, persistence, and trusted environments remain the main pressure points. Explore all updates: https://diamatix.com/news/ #DIAMATIX #Cybersecurity #WeeklyDigest #ThreatIntelligence #NIS2 #Phishing #SupplyChainSecurity

Благодарим на всички, които се включиха в нашия уебинар, посветен на практическото прилагане на новите изисквания в болници и здравни заведения. Събитието събра над 40 регистрации и повече от 30 участници на живо. Говорихме за: • как промените в Закона за киберсигурност (МИС2) се отразяват на здравните организации • кои са първите стъпки към съответствие • как да се подходи към управлението на киберрискове в среди с чувствителни данни и критични системи Фокусът беше върху реалното прилагане. Какво трябва да се направи на практика. Ако не сте успели да се включите или искате да прегледате отново темата: 🎥 Запис от уебинара 📄 Практически чеклист за първи стъпки 🛡️ MDR модел за болници и здравни организации 👉 Достъп до ресурси: https://lnkd.in/dj7EUptw Ако темата е актуална за вашата организация, можем да обсъдим конкретните следващи стъпки. 👉 Заявете среща: https://lnkd.in/dy9W33xt

📢 Днес, 14:00. Кратък уебинар за болници и здравни заведения, фокусиран върху практически стъпки, които може да предприемете веднага. Все още можете да се регистрирате от тук: 👉 https://lnkd.in/d5-H72Wi

📣 👩⚕️ Утре е уебинарът ни за болници и здравни заведения. 📅 26 март, четвъртък 🕒 14:00 – 14:45 Сесията е кратка и изцяло практическа. Всички регистрирани ще получат запис и практически чеклист, а за участниците на живо ще има и сертификат. 👉 Може да се регистрирате от тук: https://lnkd.in/d5-H72Wi

Not every threat comes from the outside. Some of the most difficult incidents to detect happen within trusted boundaries. Attack #6: Insider Threat How internal access turns into risk. 🔗 https://lnkd.in/drpjt2GG