EDR killer links RansomHub with Play, Medusa, BianLian gangs

Laura FrenchMarch 27, 2025

EDRKillShifter was used by the same affiliate in multiple attacks for different RaaS groups.

RESOURCES

Ransomware
Ransomware resurgence: Why stealth tactics demand a shift in security priorities
MDR
How two organizations beat the cyber insurance maze
Cybersecurity insurance
Why your cyber insurance may not cover everything: Finding and fixing blind spots
Identity
Killing CAPTCHA: Blueprint for a more secure and frictionless future
Identity
Securing the identity attack surface: Strategies for closing identity security gaps

PODCASTS

Vulnerability Management
SignalGate and How Not To Protect Secrets – PSW #867
Leadership
The Pace of Investments Requires Better Risk Management, Boards Challenged, & More – BSW #388
Vulnerability Management
Curdled Miscreant, VanHelsing, MFA, Room 237, MFA, Velora, 23nMe, Josh Marpet… – SWN #462
Application security
Finding a Use for GenAI in AppSec – Keith Hoodlet – ASW #323
SIEM
Google picks up a Wiz kid, GitHub’s malicious actions, Agentic AI is sus – ESW #399

FEATURED

Perspectives Spotlight: Expert Insights

Perspectives Spotlight: Expert Insights

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

Privacy concept: computer keyboard with Key icon and word Phishing on enter button background, 3d render

AI-enabled phishing and fake worker attacks on the rise

Shaun NicholsMarch 27, 2025

Advances in AI are leading to phishing attacks that are more prolific and convincing to end users.

Photovoltaic panels of solar power station in the landscape at sunset. View from above.

Critical Infrastructure Security

46 new bugs in solar power inverters raise concerns over power grid stability

Steve ZurierMarch 27, 2025

While 80% of the flaws found in the inverters were high or critical, some experts advise not to become too distracted by “doomsday” scenarios.

Adobe Stock

Novel technique can unmask up to 70% of crooks hiding behind VPNs, proxies, Tor

Tom Spring March 27, 2025

Technique claims it can unmask crooks hiding behind VPNs, proxy servers and Tor browsers with up to 70% reliability.

Network Security

Broadcom fixes authentication bypass flaw in VMware Tools for Windows

Shaun NicholsMarch 27, 2025

Access control weakness could potentially allow log-ins without proper authentication in VMware Tools for Windows.

Dangerous npm package ‘patches’ legitimate software with malware

Laura FrenchMarch 26, 2025

The malware targets the “ethers” package and opens a reverse shell.

Pete Hegseth, Tulsi Gabbard

Leak of US strike plans to The Atlantic underscores risk of data seepage

Shaun NicholsMarch 26, 2025

Human error is often at the center of data leaks from secured messaging platforms like the recent leak of U.S. strikes on Houthi rebels in Yemen.

Username Login Password Page - Data protection Concept, Cyber security. 3d rendering

Atlantis AIO tool automates credential stuffing across 140 platforms

Steve ZurierMarch 26, 2025

New tool can test millions of stolen credentials with minimal effort to run account takeovers.

An ant explores a glowing circuit board, resembling a fingerprin

Network Security

Chinese hackers spend years roaming telecommunications service

Shaun NicholsMarch 25, 2025

China Chopper malware allowed threat group "Weaver Ant" to remain undetected for years.

EVENTS