%term

SpiderLabs Ransomware Tracker Update October 2025: Qlin Doubles Down on Attacks

Nov 4, 2025 By Trustwave In Trustwave

The worldwide ransomware landscape saw a dramatic shift in attacks in October 2025, jumping 41% month over month, with the most prolific attacker, Qlin, more than doubling the number of attacks it launched, according to Trustwave, A LevelBlue Company, research. The US remained the primary recipient of ransomware attacks, but October saw manufacturing overtake technology as the most targeted vertical sector.

Read Post

Trustwave

Read more about SpiderLabs Ransomware Tracker Update October 2025: Qlin Doubles Down on Attacks

Scattered LAPSUS$ Hunters: Anatomy of a Federated Cybercriminal Brand

Nov 4, 2025 By Serhii Melnyk In Trustwave

Trustwave SpiderLabs’ Cyber Threat Intelligence team is tracking the recent emergence of what appears to be the consolidation of three well-known threat groups into a “federated alliance” that offers, among its activities, Extortion-as-a-Service (EaaS). The collective comprises Scattered Spider, ShinyHunters, and LAPSUS$.

Read Post

Trustwave

Read more about Scattered LAPSUS$ Hunters: Anatomy of a Federated Cybercriminal Brand

Intel Chat: BlackBasta, BlueNoroff, Operation ForumTroll & Aisuru [263]

Nov 3, 2025 By LimaCharlie In LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows.

View Video

LimaCharlie

Read more about Intel Chat: BlackBasta, BlueNoroff, Operation ForumTroll & Aisuru [263]

Lab AI Ransomware Nearly Sparks Crisis

Oct 31, 2025 By Razorthorn Security In Razorthorn

A harmless academic AI ransomware prototype caused panic, showing just how thin the line now is between lab projects and live attack.

View Video

Razorthorn

Read more about Lab AI Ransomware Nearly Sparks Crisis

Juice Jacking Explained: Stay Safe at Public USB Chargers

Oct 31, 2025 By SafeAeon Inc. In SafeAeon

Recharging the battery of phones, tablets, or laptops in public places such as airports, stations, hotels, or cafés is quite normal and convenient. Everybody does it while traveling or working on the go. Most of these charging points rely on USB ports, which not only deliver power but also support data transfer. In recent years, cybersecurity authorities such as the FBI and the Federal Communications Commission (FCC) have warned users about a rising cyber threat known as juice jacking.

Read Post

SafeAeon

Read more about Juice Jacking Explained: Stay Safe at Public USB Chargers

The Return of the Invisible Threat: Hidden PUA Unicode Hits GitHub repositorties

Oct 31, 2025 By Ilyas Makari In Aikido

It wasn’t long ago that we uncovered compromised extensions on Open VSX. Now, a new wave of attacks is emerging, and all signs point to the same threat actor. The technique will sound familiar: hidden malicious code injected with invisible Unicode Private Use Area (PUA) characters. We first saw this trick back in March when npm packages used PUAs to conceal payloads. Then came Open VSX. Now, the attacker seems to have turned their sights on GitHub, and their methods are evolving.

Read Post

Aikido

Read more about The Return of the Invisible Threat: Hidden PUA Unicode Hits GitHub repositorties

Advanced Threat Hunting Demo: Brickstorm APT

Oct 30, 2025 By Rubrik In Rubrik

Is your VMware environment secure? A sophisticated backdoor called BRICKSTORM, used by espionage actor UNC5221, could be hiding in your vCenter backups right now. Restoring from a compromised snapshot means letting the attackers right back in. But what if your backups could be your best defense? In our new 4-minute demo, we walk through the exact steps to: Proactively hunt for BRICKSTORM within your backups using YARA rules. Instantly quarantine infected snapshots to stop the threat from spreading. Identify a guaranteed 'Gold Copy' for a fast, safe, clean-room recovery.

View Video

Rubrik

Read more about Advanced Threat Hunting Demo: Brickstorm APT

October 2025 Ransomware Update

Oct 30, 2025 By WatchGuard Technologies In WatchGuard

his week on the podcast, we have our resident ransomware expert, Ryan Estes, on to give an update on the latest in the ransomware ecosystem. We cover a few recent changes to operators, extortion techniques, and business impact from ransomware attacks in recent months.

View Video

WatchGuard

Read more about October 2025 Ransomware Update

AI Unlocks Ransomware And Deepfake Espionage

Oct 30, 2025 By Razorthorn Security In Razorthorn

Attackers use AI to craft phishing, automate ransomware, and slip deepfakes into job interviews—breaching systems without ever touching a keyboard.

View Video

Razorthorn

Read more about AI Unlocks Ransomware And Deepfake Espionage

How Cybercriminals Bypass Your Defenses (And How to Stop Them)

Oct 30, 2025 By SecuritySenses In SecuritySenses

Malware can seriously disrupt a computer's functionality. Performance issues are only the beginning, with the worst cases involving credential theft, data theft, or monetary theft. Malware is annoying, but it can also be dangerous. Simply put, you don't want malware to make its way onto your devices. That's what antivirus software is for.

Read Post