This report is the latest in a series that will delve into the deep research the Trustwave SpiderLabs Threat Intelligence team conducts daily on the major threat actor groups currently operating globally. The information gathered is part of a data repository that helps Trustwave SpiderLabs identify possible intrusions as it conducts threat hunts, vulnerability scans, and other offensive and defensive security tasks.

Microsoft Hyper-V is a type 1 hypervisor that you can install on Windows – including on Windows 10 and Windows Server 2019. In some scenarios, you may need to uninstall Hyper-V on your Windows machine. For example, VMware Workstation and Hyper-V are not compatible when installed on the same machine. The same issues occur with other type 2 hypervisors like VirtualBox.

Trustwave's Threat Intelligence team has discovered a new malware dubbed Pronsis Loader, with its earliest known variant dating back to November 2023. This loader shares similarities with the D3F@ck Loader , which surfaced in January 2024. Pronsis Loader has been observed delivering different malware variants, including Lumma Stealer and Latrodectus as its primary payloads. Additionally, the team identified infrastructure linked to Lumma Stealer during the investigation.

CyberArk’s Privileged Access Management helps organisations secure privileged accounts and protect sensitive data from cyber threats. This article covers its key features, how it works, and the benefits it offers for cybersecurity, with insights on how it stands out in the market.

Cloud security refers to the comprehensive set of measures and technologies designed to protect data, applications, and infrastructure within cloud environments. As more businesses migrate to cloud platforms, safeguarding these environments becomes critical. The shift to cloud brings efficiency, scalability, and cost-effectiveness, but given the rising trends of cyber-attacks, it also introduces new security challenges that must be addressed to ensure sensitive data remains protected.

With EASM now a critical piece of security operations, it seems like every vendor is jumping into the EASM pool. But not all EASM products are created equal. Companies in adjacent markets, like threat intelligence, are creating attack surface scanning products that are well short of enterprise grade. The shortcomings of these basic EASM products can waste time, erode confidence in security teams, and give an inaccurate picture of organizational risk.

During World War II, a group of brilliant minds led by Alan Turing gathered at Bletchley Park in England to crack the German Enigma code. This wasn't just a technological challenge, it was a race against time that required diverse skills, innovative thinking, and collaboration. The success at Bletchley Park didn't come from a single genius or a magic machine, but from a collective effort that brought together linguists, mathematicians, chess players, and even crossword enthusiasts.

A free phishing-as-a-service (PhaaS) platform named Sniper Dz has assisted in the creation of more than 140,000 phishing sites over the past year, according to researchers at Palo Alto Networks. The service allows unskilled criminals to spin up sophisticated phishing sites that steal credentials or deliver malware.

Efficiently managing cyber security exposures and vulnerabilities is critical to keeping an organization’s most valuable assets secure. With cyber threats growing in complexity and volume, security teams are constantly challenged to manage an increasing workload while keeping risks at bay. Streamlining the vulnerability management lifecycle has never been more important.