%term

The Invisible Threat: How Polymorphic Malware is Outsmarting Your Email Security

Nov 12, 2025 By KnowBe4 | Human Risk Management In KnowBe4

Approximately $350 million in preventable losses stem from polymorphic malware, a malicious software virus that constantly changes its code to evade detection. With 18% of new malware using adaptive techniques that challenge traditional defenses, now is the time to enhance your organization's security posture. James McQuiggan, CISO Advisor at KnowBe4, shares valuable insights and proactive strategies to defend against polymorphic malware attacks. You'll discover.

View Video

KnowBe4

Read more about The Invisible Threat: How Polymorphic Malware is Outsmarting Your Email Security

Cephalus Weaponizes Stolen RDP Credentials to Deploy Ransomware

Nov 11, 2025 By Gabriel Avner In Apono

New research out of AhnLab documents the Cephalus ransomware group has been aggressively exploiting stolen Remote Desktop Protocol (RDP) credentials to break into networks and execute rapid, destructive encryption campaigns. The pattern is straightforward and brutal: credentials get you in, and once inside the attackers move fast to blind and break recovery.

Read Post

Apono

Read more about Cephalus Weaponizes Stolen RDP Credentials to Deploy Ransomware

SharpParty: Process Injection in C#

Nov 11, 2025 By Will Rabb In LevelBlue

As Anti-Virus and EDR solutions improve in detection and response capabilities, the job of a red teamer can become quite arduous. Malware payloads and techniques that once dominated networks have failed the test of time as EDR becomes aware of them. If your initial access payloads are detected immediately, your six-week long red team could be dead on arrival.

Read Post

LevelBlue

Read more about SharpParty: Process Injection in C#

The Top 10 Ransomware TTPs

Nov 10, 2025 By Arctic Wolf In Arctic Wolf

Arctic Wolf’s The State of Cybersecurity: 2025 Trends Report revealed that 23% of organizations experienced at least one significant ransomware attack in 2024. And these attacks remain difficult for organizations to remediate without succumbing to threat actor demands, with the same report finding 76% of victim organizations are electing to pay the ransom to regain access to their data and environment.

Read Post

Arctic Wolf

Read more about The Top 10 Ransomware TTPs

ClickFix to NodeJS RAT: An Ominous Sign

Nov 10, 2025 By Patrick McHale and Joshua Green In BlueVoyant

BlueVoyant’s Threat Fusion Cell (TFC) and Security Operations Center (SOC) have uncovered a cyber campaign that signals a concerning evolution in the threat landscape: the rise of the "LLM-Enabled Developer." In-depth analysis suggests the actor behind an ongoing ClickFix campaign leveraged publicly documented advanced attack chains, powered by AI-generated code, to deploy a less sophisticated, but capable Node.js RAT.

Read Post

BlueVoyant

Read more about ClickFix to NodeJS RAT: An Ominous Sign

Malicious NPM Package Found Targeting GitHub By Typosquatting on GitHub Action Packages

Nov 10, 2025 By Veracode Threat Research In Veracode

The package states it is for the GitHub Actions Toolkit, which has a legitimate npm package @actions/artifact. Therefore this malware package is a clear typosquat with the swapping of the letters “ti” for “it”. We took a look at the “harness” binary as indicated in version 4.0.13.

Read Post

Veracode

Read more about Malicious NPM Package Found Targeting GitHub By Typosquatting on GitHub Action Packages

Protecting Your Freight Operations: Essential Cybersecurity Guide for Logistics Networks

Nov 10, 2025 By SecuritySenses In SecuritySenses

Freight forwarders face an escalating cyber threat landscape that can destroy operations within months. According to IBM research, a single data breach in the transport sector costs an average of $4.18 million. For small and medium freight forwarders, the consequences prove devastating: 60% of small companies go out of business within six months of a cyberattack.

Read Post

SecuritySenses

Read more about Protecting Your Freight Operations: Essential Cybersecurity Guide for Logistics Networks

Shadows in the Shortcut: UNC6384's Silent Siege on European Diplomacy

Nov 7, 2025 By Foresiet In Foresiet

In the autumn of 2025, well-crafted emails landed in inboxes with subject lines that read like routine diplomacy: invitations to regional workshops, follow-ups on border-facilitation talks, agendas for logistics and procurement. The attachments looked ordinary — a short, convenient file that promised to open a document or shortcut to a resource. But inside those tiny shortcuts lived a trap.

Read Post

Foresiet

Read more about Shadows in the Shortcut: UNC6384's Silent Siege on European Diplomacy

Special Report on Ransomware

Nov 7, 2025 By Forescout Technologies In Forescout

Experts at Forescout discuss recent trends in ransomware, including the U.K. government’s policies banning public sectors from paying cyber ransoms. Our VP of Security Intelligence, Rik Ferguson, is interviewed by Alison King, VP of Government Affairs.

View Video

Forescout

Read more about Special Report on Ransomware

Malware Families, Mobile Threats, and the Human Risk Narrative Shaping Cybersecurity

Nov 6, 2025 By Lookout In Lookout

The battle against cyber threats is never-ending — and mobile is the new battleground. Modern workers now rely on mobile devices to access sensitive information, often using a single device for personal and professional purposes. As a result, malicious actors have sensed a blind spot and are using these devices as the first line of attack to gain a foothold into secure systems. 1.2 million enterprise employees were exposed to mobile phishing attacks in Q2 2025.

Read Post