%term

Key Takeaways from the Latest ISR: More Malware, and Harder to Detect

Apr 15, 2025 By Corey Nachreiner In WatchGuard

Malware hasn’t just increased—it’s become harder to detect. Evasive techniques are reshaping the threat landscape and pushing traditional security models to their limits. Today’s advanced malware campaigns are consistently slipping past multiple layers of defense—from email and network to endpoints—challenging even the most robust infrastructures.

Read Post

WatchGuard

Read more about Key Takeaways from the Latest ISR: More Malware, and Harder to Detect

NetSupport RAT Malware: VM Evasion & Self-Deletion Tactics

Apr 15, 2025 By Foresiet In Foresiet

Researchers at Foresiet have analyzed a Remote Access Trojan (RAT) known as NetSupport Manager. Originally developed as a legitimate remote access and IT support tool, NetSupport Manager has a history spanning over two decades. It provides features such as file transfer, remote desktop sharing, chat support, screen monitoring, and inventory tracking. However, in recent years, threat actors have increasingly weaponized this tool in malicious campaigns.

Read Post

Foresiet

Read more about NetSupport RAT Malware: VM Evasion & Self-Deletion Tactics

Proton66 Part 1: Mass Scanning and Exploit Campaigns

Apr 14, 2025 By Pawel Knapczyk, Dawid Nesterowicz In Trustwave

Trustwave SpiderLabs continuously tracks a range of malicious activities originating from Proton66 ASN, including vulnerability scanning, exploit attempts, and phishing campaigns leading to malware infections. In this two-part series, SpiderLabs explores the malicious traffic associated with Proton66, revealing the extent and nature of these attacks.

Read Post

Trustwave

Read more about Proton66 Part 1: Mass Scanning and Exploit Campaigns

Ep 6: The Gunslingers

Apr 14, 2025 By Rubrik In Rubrik

During China’s pseudo-cyber-hiatus, the PRC’s hacking operations get a major overhaul. CCP leadership moves responsibility away from the sloppy, brazen hackers at the People’s Liberation Army to the far more stealthy, and strategic, Ministry of State Security. Gone are the “most polite” hackers in the digital world. Here to stay are the gunslingers – the elite of the elite in their field. In Episode 6, host and former New York Times cybersecurity reporter, Nicole Perlroth lays out what it looked like as China’s hackers went underground… and what we missed in Eastern Europe as they did.

View Video

Rubrik

Read more about Ep 6: The Gunslingers

The Best Security Strategy You're Not Using

Apr 12, 2025 By Rubrik In Rubrik

For small organizations with limited resources, cybersecurity expert Pavlina Pavlova shares a powerful strategy: collect less data. Minimize what you gather in the first place instead of struggling to protect excessive information you don't actually need.

View Video

Rubrik

Read more about The Best Security Strategy You're Not Using

Ransomware Reaches A Record High, But Payouts Are Dwindling

Apr 11, 2025 By Graham Cluley In Tripwire

Shed a tear, if you can, for the poor, misunderstood cybercriminals hard at work trying to earn a dishonest crust by infecting organisations with ransomware. Newly released research has revealed that the riches to be made from encrypting a company's data and demanding a ransom are not proving so easy to come by as they once were. Because, although the number of ransomware attacks are reported to have reached record-breaking heights in the first months of 2025, gangs' profits are thought to be plummeting.

Read Post

Tripwire

Read more about Ransomware Reaches A Record High, But Payouts Are Dwindling

Why Cyber Attacks Hit Women Harder

Apr 11, 2025 By Rubrik In Rubrik

When healthcare systems are compromised by cyberattacks, women face disproportionate consequences. As primary caregivers and users of reproductive health services, they suffer more when these critical systems fail, explains researcher Pavlina Pavlova.

View Video

Rubrik

Read more about Why Cyber Attacks Hit Women Harder

New WatchGuard Threat Lab Report Discovers 94% Increase in Network Malware as Cybercriminals Exploit Advanced, Encrypted Connections

Apr 10, 2025 By WatchGuard In WatchGuard

Other key findings show an increase in crypto miner detections, a spike in zero-day malware, a drop in endpoint malware, a rise in Linux-based threats, and more.

Read Post

WatchGuard

Read more about New WatchGuard Threat Lab Report Discovers 94% Increase in Network Malware as Cybercriminals Exploit Advanced, Encrypted Connections

Chinese APT Exploits Ivanti CVE-2025-22457 with Malware

Apr 10, 2025 By Foresiet In Foresiet

A newly disclosed vulnerability in Ivanti Connect Secure (ICS) VPN appliances has been weaponized in the wild by a Chinese nation-state threat actor, UNC5221. Tracked as CVE-2025-22457, this critical stack-based buffer overflow vulnerability allows unauthenticated remote attackers to execute arbitrary code, posing a significant risk to enterprise networks.

Read Post

Foresiet

Read more about Chinese APT Exploits Ivanti CVE-2025-22457 with Malware

64% of Australian Organizations Hit by Ransomware Were Forced to Halt Operations

Apr 10, 2025 By Stu Sjouwerman In KnowBe4

Illumio’s recent Global Cost of Ransomware Study found that 64% of Australian companies hit by ransomware had to shut down operations as a result. Additionally, 43% of these organizations reported a significant loss of revenue, and 39% lost customers as a result of an attack. Most respondents indicated that reputational damage has overtaken regulatory fees as the most costly effect of a ransomware attack.

Read Post