Ransomware

Center of Excellence

Ransomware

Application security

Google Calendar used as middleman for stealthy NPM malware

The malicious package also uses Unicode steganography to evade detection.

A stock illustration that represents the concept of e-commerce phishing in pastel orange and cobalt blue, incorporating fake shopping carts and conceptual metaphors of stolen data and false security for an engaging and intuitive understanding of the concept. Utilize soft gradients and layered shadows to create a hint of spatial complexity and priority. --ar 16:9 --v 6.1 Job ID: b12556c8-93ea-4d94-91b3-9ca3f4a58a7b

Ransomware

Ransomware group sets sights on US retailers after hitting UK merchants

Google suspects Scattered Spider targeted UK retailers Marks & Spencer, the Co-op and Harrods.

Cybersecurity Threat: Glowing Red Skulls on a Circuit Board, 3D Render

Ransomware

Ransomware and exploits surge: Urgent cyber threat insights and critical moves for 2025

In late 2024, ransomware groups showed heightened interest in sectors rich with sensitive data.

SAP is a German based multinational software corporation

Vulnerability Management

SAP NetWeaver flaw exploited by ransomware groups BianLian, RansomEXX

A second zero-day flaw was found in addition to exploitation of Netweaver by ransomware groups.

Identity

Tycoon 2FA phishing kit update timeline reveals new evasion techniques

Browser fingerprinting and additional payload encryption are the most recent methods used.

Ransomware

The State of Ransomware 2024

Our fifth annual report reveals how ransomware experiences have changed over the last year, plus brand-new insights into the business impact of an attack.

AI/ML

Fake image-to-video AI sites deliver novel ‘Noodlophile’ infostealer

The “AI videos” generated from these sites are actually malicious executables that set off the attack chain.

Threat Intelligence

Malicious .NET files conceal RATs in bitmap images

A recent malspam campaign revealed a payload nested within two .NET assemblies.

Ransomware

Defenders assemble: Time to get in the game

Recent research finds signs of progress in the public-private alliance against ransomware.

Laptop showing the national flag of Russia and a warning sign of malware. Illustration of the concept of cyber threats, DDOS and hacking activities related to Russia

Threat Intelligence

Google warns of Russian hackers ColdRiver wielding new malware tools

The ColdRiver group has been spotted using a previously unknown piece of malware designated as “LostKeys.”

Sponsor Content

DOWNLOAD WHITEPAPER

Sponsor Content

Related Events

Battling ransomware in the age of AI: Hype, hope, and hard truths

Ransomware Resilience: Strategies to Defend, Mitigate, and Recover

Inside Ransomware, Inc.: Defeating the Corporate Machine Driving Cybercrime

Related Videos

Threat predictions for 2024: Chained AI and CaaS operations give attackers more ‘easy’ buttons than ever

Lessons from Ukraine: How cyberwar shapes security at home

Watch: FBI encourages reporting of cyber incidents, backs legislation

Perspectives

The recent ransomware attacks on UK retailers all targeted gaps in identity

3 ways to build a ransomware IR strategy that works

Medusa rises from obscurity to RaaS powerhouse

Briefs

Education slowest to report ransomware-related data breaches

Ransomware likely compromised Baltimore county’s health data

Novel TransferLoader malware examined