ATTACKERS are increasingly weaponising the workload of Security Operations Centres, turning phishing floods into a test of analysts’ capacity rather than a simple lure. The piece explains that high-volume campaigns can overwhelm triage queues, turning investigations that should take minutes into hours, and even into 12-hour delays, which widens an attacker’s window for credential compromise and lateral movement.
A key concept is the Informational Denial-of-Service (IDoS) effect, where the flood of reports diverts attention from the real payload embedded in targeted messages. The article notes that analysts’ decision speed is the critical bottleneck, arguing for “decision-ready” investigations and multi-agent analytics that provide transparent reasoning for each verdict, rather than opaque automation.
It also highlights a shift toward specialized investigation agents—checking SPF, DKIM, DMARC, sender identity, linguistic cues, and endpoint telemetry—so threats can be conclusively assessed within minutes. Conifers[.]ai’s CognitiveSOC platform is cited as delivering decision-ready phishing investigations in minutes, helping SOCs absorb alert fatigue and maintain resilience, in a piece published on 12 March 2026. according to The Hacker News, 12 March 2026