Threat Horizon
Shining a Light on Emerging Threats
-
Patch Tuesday: March 2025
March 2025 Patch Tuesday: Microsoft Tackles 7 Zero-Days and 57 Flaws Microsoft’s March 2025 Patch Tuesday, released on March 11, delivered a hefty batch of security updates, addressing 57 vulnerabilities, including seven zero-day flaws—six of which were actively exploited. With critical remote code execution (RCE) bugs and a return to...
-
The Horizon Review: Week of March 3
This week delivered a flurry of cybersecurity developments, from state-sponsored APTs to critical patches and emerging breaches. Here are the top 10 stories shaping the threat landscape. 1. North Korean APT Moonstone Sleet Deploys Qilin Ransomware Microsoft revealed that Moonstone Sleet, a North Korean hacking group, has begun using Qilin...
-
North Korean Hackers Team Up with Qilin Ransomware Gang, Microsoft Reports
On March 7, 2025, Microsoft revealed that a North Korean hacking group, tracked as Moonstone Sleet, has recently begun deploying payloads from the notorious Qilin ransomware gang in a series of targeted attacks. This development, reported by BleepingComputer, marks a significant shift in tactics for the state-sponsored group, blending cyberespionage...
-
Testing EDR Detections with Microsoft Defender and Huntress
Many businesses use an EDR solution to manage endpoints and remediate incidents. How can you be sure these solutions are working properly and are able to act to stop a threat when it occurs? Today we will look at how Microsoft Defender and Huntress EDR respond to potential incidents and...
-
Patch Tuesday: February 2025
Microsoft’s February 2025 Patch Tuesday, released on February 11, rolled out critical security updates addressing a mix of vulnerabilities across Windows, Office, and other products. With cyber threats escalating—think North Korean ransomware and exploited zero-days—this month’s patches were a vital lifeline for IT admins. Here’s the breakdown. Windows 11 Gets...
-
CISA Warns of Sisense Data Breach
CISA urges Sisense customers to reset credentials after breach and compromise of customer data. On Wednesday, April 11 2024, the Cybersecurity and Infrastructure Security Agency (CISA) released an advisory warning of a data breach and compromise of customer data at Sisense. Sisense is a a company that provides data analytics...
-
CSRB Publishes Scathing Report on 2023 Microsoft Online Exchange Breach
The Department of Homeland Security’s Cyber Safety Review Board slams Microsoft for 2023 Exchange Intrusion that should ‘never have happened’. On Tuesday, April 2 2023, the The Department of Homeland Security’s Cyber Safey Review Board issued a report concerning the Microsoft Online Exchange Incident that occurred in the Summer of...