Welcome to The Optery Dispatch — a newsletter delivering the latest insights on threat intelligence and proactive cybersecurity strategy. In Issue #5, published September 30, 2025, we cover: Salesforce Attacks: FBI FLASH Alert UNC6040 and UNC6395 are breaking into Salesforce environments to steal data and extort victims. The FBI, in an alert from September 12, hasContinue reading "Salesforce Breaches, Social Engineering & Agentic AI Threats"

  Welcome to The Optery Dispatch — a newsletter delivering the latest insights on threat intelligence and proactive cybersecurity strategy. In Issue #4, published August 26, 2025, we cover: New Joint CISA/FBI/CNMF Advisory Is Latest Confirmation that Attackers Use Commercial Data Brokers to Target Organizations Advisory follows a string of evidence showing attackers leveraging data brokers forContinue reading "Data Brokers Used to Target Orgs, Social Engineering is #1 Attack Vector"

Palo Alto Networks’ latest Unit 42 Global Incident Response Report: Social Engineering Edition shows that social engineering remains the #1 initial access vector. Among the more than 700 cases Unit 42 investigated between May 2024 and May 2025, 36% of all incidents began with social engineering. Of those: More Stats from the Report Additional InsightsContinue reading "Unit 42 Report: Social Engineering Is the #1 Initial Access Vector "

  Welcome to The Optery Dispatch — a newsletter delivering the latest insights on threat intelligence and proactive cybersecurity strategy. In Issue #3, published July 24, 2025, we cover: Scattered Spider’s Use of Data Brokers Reconnaissance, Targeting, Threats One of today’s most dangerous threat groups is using data brokers to build detailed victim profiles, impersonate employees, andContinue reading "Scattered Spider, Social Engineering, and Ransomware"

The concept of the “enterprise attack surface” refers to the sum of all possible security risk exposures for a business. Traditionally, securing this attack surface was a task focused primarily on direct IT infrastructure vulnerabilities, such as network systems, software applications, and endpoints. Aspects like exposed personally identifiable information (PII) on data broker sites, whichContinue reading "Protecting Employee Data As Part of Attack Surface Management"