%term

EMBER2024: Advancing the Training of Cybersecurity ML Models Against Evasive Malware

Sep 3, 2025 By Phil Roth In CrowdStrike

CrowdStrike data scientists are members of a team of cybersecurity researchers that recently released EMBER2024, an update to EMBER, the popular open source malware benchmark dataset originally released in 2018. The EMBER2024 dataset includes metadata, labels, and calculated features for over 3.2 million files from six different file formats.

Read Post

CrowdStrike

Read more about EMBER2024: Advancing the Training of Cybersecurity ML Models Against Evasive Malware

10 Budget Moves to Protect Against Ransomware

Sep 3, 2025 By SecuritySenses In SecuritySenses

Protecting your business from ransomware doesn't require an unlimited budget, but it does take careful planning. Cyberattacks grow more advanced each year. Ignoring preparedness could result in massive downtime or data loss. Investing in the right defenses reduces risk without overspending. Knowing where to allocate funds can mean the difference between prevention and recovery costs spiraling out of control. Here are nine actionable investments with real-world impact to safeguard your organization while keeping budgets in check.

Read Post

SecuritySenses

Read more about 10 Budget Moves to Protect Against Ransomware

RapperBot: From Infection to DDoS in a Split Second

Sep 2, 2025 By Pedro Umbelino In BitSight

This blog post may sound a bit personal. That’s because it is. It is also a long story, so you might want to grab yourself some coffee (or your favorite beverage).

Read Post

BitSight

Read more about RapperBot: From Infection to DDoS in a Split Second

CTI Roundup: Linux Malware, UNC5518, PRC-Nexus

Sep 2, 2025 By Tanium In Tanium

New Linux malware evades antivirus detection, UNC5518 deploys CORNFLAKE.V3 using ClickFix and fake CAPTCHA pages, and a PRC-Nexus campaign hijacks web traffic.

Read Post

Tanium

Read more about CTI Roundup: Linux Malware, UNC5518, PRC-Nexus

Defeating Ransomware with Unified Security

Sep 2, 2025 By WatchGuard Technologies In WatchGuard

Ransomware is getting smarter, so your security better be, too. The old playbook of scattered tools and siloed defenses no longer cuts it. Every business needs to connect the dots to stay ahead. In this webinar, we’ll show you how bringing together SASE, XDR, NDR, and automation under a unified platform creates a powerful security force that works with your team, not against it.

View Video

WatchGuard

Read more about Defeating Ransomware with Unified Security

Google Saved the Day: How Search Solved a Ransomware Alert #appsec

Sep 1, 2025 By Mend In Mend

Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.

View Video

Mend

Read more about Google Saved the Day: How Search Solved a Ransomware Alert #appsec

Intel Chat: Trend Micro Apex One, PyPI domains, RingReaper & Openbaar Ministrie attack [244]

Sep 1, 2025 By LimaCharlie In LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows.

View Video

LimaCharlie

Read more about Intel Chat: Trend Micro Apex One, PyPI domains, RingReaper & Openbaar Ministrie attack [244]

Cloud Ransomware Attack: Storm-0501's Azure Tactics and How to Defend

Aug 29, 2025 By Foresiet In Foresiet

Cloud adoption has transformed how organizations store and secure critical data—but it has also created new opportunities for attackers. A recent campaign by Storm-0501, a financially motivated ransomware group, highlights how devastating a cloud ransomware attack can be when backups and recovery measures fail.

Read Post

Foresiet

Read more about Cloud Ransomware Attack: Storm-0501's Azure Tactics and How to Defend

Cloud Ransomware: How Storm-0501 Hackers Are Redefining Data Extortion

Aug 29, 2025 By Foresiet In Foresiet

Ransomware is no longer confined to on-premise networks. A recent report from Microsoft reveals how Storm-0501, a notorious threat group, has pivoted its focus from traditional device encryption to cloud-based ransomware attacks. By exploiting native cloud features, these attackers bypass conventional malware defenses, exfiltrate sensitive data, destroy backups, and extort organizations—all without deploying traditional ransomware encryptors.

Read Post

Foresiet

Read more about Cloud Ransomware: How Storm-0501 Hackers Are Redefining Data Extortion

Nx npm Malware Explained: AI Agent Hijacking

Aug 28, 2025 By Snyk In Snyk

Nx npm malware (Aug 2025): attackers published malicious Nx packages that weaponized AI coding agents (Claude Code, Gemini CLI, Amazon Q) via a postinstall script to inventory sensitive files and exfiltrate sensitive data to public GitHub repos named “s1ngularity-repository-*.” We break down what happened, affected versions, and how to check + respond (rotate credentials, hunt IoCs, and more). Resources.

View Video