%term

Malware hiding in plain sight: Spying on North Korean Hackers

Mar 31, 2025 By Madeline Lawrence In Aikido

On March 13th 2025, our malware analysis engine alerted us to a potential malicious package that was added to NPM. First indications suggested this would be a clear-cut case, however, when we started peeling back the layers things weren’t quite as they seemed. Here is a story about how sophisticated nation state actors can hide malware within packages.

Read Post

Aikido

Read more about Malware hiding in plain sight: Spying on North Korean Hackers

Launching Aikido Malware - Open Source Threat Feed

Mar 31, 2025 By Charlie Eriksen In Aikido

Our Aikido Intel team has been identifying undisclosed open-source vulnerabilities using LLM-driven analysis and human verification. Now, we’re expanding our supply chain security research to detect and track malware in open-source packages, cheaper, better, & faster than what exists today.

Read Post

Aikido

Read more about Launching Aikido Malware - Open Source Threat Feed

Cyber Heroes: When Citizens Fight Back Against Ransomware

Mar 31, 2025 By Rubrik In Rubrik

Highlighting real-world examples of civilian cyber engagement, from the Ransomware Hunting Team developing decryptors to organizational models like Cyber Peace Builders that connect volunteers with nonprofits needing cybersecurity assistance.

View Video

Rubrik

Read more about Cyber Heroes: When Citizens Fight Back Against Ransomware

Ep 4: Naming and Shaming

Mar 31, 2025 By Rubrik In Rubrik

As Chinese hackers continue their raid of American companies, the threat reaches new levels of urgency, not so much for the sophistication of these hackers, but because of the sheer volume of attacks. And yet, victims continue to keep their breaches under wraps, and the government is hamstrung in what they can say because most everything they know about Chinese cyberespionage is classified.

View Video

Rubrik

Read more about Ep 4: Naming and Shaming

SquareX Discloses Browser-Native Ransomware that Puts Millions at Risk

Mar 28, 2025 By SquareX

From WannaCry to the MGM Resorts Hack, ransomware remains one of the most damaging cyberthreats to plague enterprises. Chainalysis estimates that corporations spend nearly $1 billion dollars on ransom each year, but the greater cost often comes from the reputational damage and operational disruption caused by the attack.

Read Post

Read more about SquareX Discloses Browser-Native Ransomware that Puts Millions at Risk

VanHelsing Ransomware: What You Need To Know

Mar 28, 2025 By Graham Cluley In Tripwire

First reported earlier in March 2025, VanHelsing is a new ransomware-as-a-service operation.

Read Post

Tripwire

Read more about VanHelsing Ransomware: What You Need To Know

ARaaStocracy - RALord ransomware emerges with new DLS

Mar 28, 2025 By Jovana Macakanja In CYJAX

The latest data leaks site (DLS) CYJAX has identified is titled RALord, which constitutes one of 14 new DLSs identified in March 2025 alone. This Ransomware-as-a-Service (RaaS) group appears to be sophisticated and professional, providing services including affiliates, data ransoms, and dark web advertisements. It has been reported that the group is active on at least one cybercriminal forum under the username ‘ForLord’.

Read Post

CYJAX

Read more about ARaaStocracy - RALord ransomware emerges with new DLS

Civilian Cyber Corps: Protecting Underfunded Organizations

Mar 28, 2025 By Rubrik In Rubrik

Welcome to the Data Security Decoded podcast by Rubrik Zero Labs. In this episode, our host, Caleb Tolin, is joined by Michael Razeeq, a cybersecurity policy researcher specializing in advocating for Civilian Cyber Corps (C3s). Michael shares insights into how these volunteer forces, C3s, are transforming community cyber defense, addressing workforce shortages, and providing both preventive and reactive cybersecurity services to underfunded organizations.

View Video

Rubrik

Read more about Civilian Cyber Corps: Protecting Underfunded Organizations

Caught in the CAPTCHAct: The Technical Tale of Lumma Stealer

Mar 28, 2025 By Sam Stoneley In SenseOn

Following on from our recent blog post, Fake CAPTCHAs, Real Threats: How Lumma Stealer Tricks Users into Self-Inflicted Malware, SenseOn has performed an in-depth analysis into recent Lumma Stealer campaigns targeting a range of our customers.

Read Post

SenseOn

Read more about Caught in the CAPTCHAct: The Technical Tale of Lumma Stealer

BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange

Mar 27, 2025 By Rubrik In Rubrik

For this special live recording of To Catch a Thief at The New York Stock Exchange, host and former lead cybersecurity and digital espionage reporter for The New York Times, Nicole Perlroth sits down with those who have been directly targeted by, traced, or directly engaged China’s state-sponsored hackers, diplomatically, or in the cyber domain.

View Video