Identity, browsers, and node.js: Everything you missed in the Threat Detection Report miniseries

This post summarizes the key findings from Red Canary's Threat Detection Report and a three-part SecOps Weekly miniseries, highlighting a surge in identity- and browser-focused attacks (OAuth abuse, infostealers, session token theft), continued use of social engineering (MFA bombing, vishing), and adversary adoption of non-native scripting (Node.js), DLL sideloading, and LOLBins; it emphasizes operationalizing these findings through purple teaming, testing tools, baselining, and practical mitigations.