Techly NewsGet the app

Get the latest tech news

What It Takes to Defend a Cybersecurity Company from Today's Adversaries


This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves.

Recent adversaries have included: DPRK IT workers posing as job applicants ransomware operators probing for ways to access/abuse our platform Chinese state-sponsored actors targeting organizations aligned with our business and customer base Various high-profile criminal groups have long specialized in social engineering campaigns to gain access to core security tools and infrastructure—ranging from EDR platforms (including SentinelOne and Microsoft Defender) to IAM and VPN providers such as Okta. We assess that the threat actor primarily gained initial foothold in the majority of these organizations by exploiting an n-day vulnerability in CheckPoint gateway devices, which aligns with previous research on ShadowPad intrusions involving the deployment of ransomware.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Today

Today

Photo of adversaries

adversaries

Related news:

News photo

How to watch and follow LlamaCon 2025, Meta's first generative AI developer conference, today

News photo

The reality of today's tech industry: layoffs, long hours, AI threats, and few perks | Silicon Valley's not so hot anymore

News photo

Study Finds Cells May Compute Faster Than Today’s Quantum Computers

« OpenAI explains why ChatGPT became too sycophant
You Wouldn't Download a Hacker News »