Blog

Threat Intelligence Blog

Research, insights, and updates from the isMalicious team.

Microsoft June 2026 Patch Tuesday: Turning 206 Vulnerabilities Into A SOC Priority Queue
SOCJun 15, 2026

Microsoft June 2026 Patch Tuesday: Turning 206 Vulnerabilities Into A SOC Priority Queue

Microsoft patched 206 vulnerabilities in June 2026, including publicly disclosed zero-days. Security teams need CVE Watch, KEV context, exploit evidence, and enrichment to avoid patch fatigue.

6 min readRead
AI-Enabled Cyberattacks and MITRE ATT&CK: Turning New Threat Maps Into SOC Action
SOCJun 4, 2026

AI-Enabled Cyberattacks and MITRE ATT&CK: Turning New Threat Maps Into SOC Action

AI-enabled threats are being mapped into ATT&CK language, but mapping is only useful when it drives enrichment, detection, triage, and response workflows.

8 min readRead
SOC Alert Fatigue: How Threat Intelligence Reduces False Positives Without Hiding Real Attacks
SOCJun 4, 2026

SOC Alert Fatigue: How Threat Intelligence Reduces False Positives Without Hiding Real Attacks

Alert fatigue is not a staffing problem alone. SOC teams need better evidence, source quality, confidence bands, and enrichment workflows that turn noisy alerts into defensible decisions.

8 min readRead
OSINT for SOC Analysts: Turning Open Source Intelligence Into Actionable Threat Intelligence
SOCApr 23, 2026

OSINT for SOC Analysts: Turning Open Source Intelligence Into Actionable Threat Intelligence

A complete guide to open source intelligence (OSINT) for security operations—tools, techniques, workflows, and legal considerations for collecting, analyzing, and operationalizing open threat data in a modern SOC.

10 min readRead
Métriques SOC : quels indicateurs suivre pour la cybersécurité
SOCApr 7, 2026

Métriques SOC : quels indicateurs suivre pour la cybersécurité

Un SOC efficace ne se juge pas au volume d’alertes. Voici les KPI utiles pour mesurer la détection, la réponse et l’amélioration continue — sans noyer l’équipe sous les tableaux de bord inutiles.

2 min readRead
Living Off the Land (LOTL): Why “No Malware File” Still Means Breach
SOCApr 2, 2026

Living Off the Land (LOTL): Why “No Malware File” Still Means Breach

Attackers increasingly abuse built-in OS binaries and scripts to avoid dropping traditional malware. Understand LOTL tradecraft and what to log, detect, and hunt for.

2 min readRead
Understanding Threat Classification: A Guide for Modern SOCs
SOCMar 14, 2026

Understanding Threat Classification: A Guide for Modern SOCs

Effective threat classification is the cornerstone of a modern SOC. Learn how to categorize threats to streamline incident response and reduce alert fatigue.

2 min readRead
Building a Custom SOC Dashboard: Integrating Real-Time Threat Feeds
SOCFeb 28, 2026

Building a Custom SOC Dashboard: Integrating Real-Time Threat Feeds

Enhance your Security Operations Center visibility. A step-by-step guide to aggregating threat data, enriching logs, and building custom security dashboards using modern Threat Intelligence APIs.

4 min readRead
Building a Modern SOC with Threat Intelligence: A Practical Guide
SOCSep 15, 2025

Building a Modern SOC with Threat Intelligence: A Practical Guide

Learn how to build an effective Security Operations Center (SOC) powered by threat intelligence. Discover essential tools, processes, and best practices for detecting, analyzing, and responding to cyber threats in real-time.

9 min readRead

Expert Threat Intelligence Analysis

Our blog features in-depth analysis from our threat research team. Each article is backed by real data from our analysis of millions of malicious domains, IPs, and URLs across the global threat landscape. Topics include ransomware campaigns, phishing techniques, malware distribution networks, and emerging threat trends. We publish actionable intelligence that security teams can immediately use to improve their defenses.

Practical Security Guidance

Beyond threat analysis, we share practical guidance for security practitioners. Our tutorials cover API integration, SIEM configuration, threat hunting techniques, and building effective threat intelligence programs. Whether you're a SOC analyst, security engineer, or CISO, you'll find content tailored to your role and experience level.

Stay Ahead of Emerging Threats

The threat landscape evolves constantly. Our blog keeps you informed about the latest attack techniques, newly discovered vulnerabilities, and emerging threat actors. Subscribe to our newsletter for weekly digests of the most important developments in cybersecurity.

Subscribe to Our Newsletter

Weekly threat intelligence insights delivered to your inbox.