Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The 2025 Trustwave Technology Risk Radar Report highlights ransomware as a major and persistent threat within the technology sector that shows no signs of abating as new ransomware-focused threat groups are constantly appearing.

As CEO of Trustwave, I’m excited to share a pivotal development in our journey to deliver world-class cybersecurity to our clients: Trustwave has signed a definitive agreement to be acquired by LevelBlue, a global leader in AI-driven managed security services. This marks a significant milestone not only for our company but for the entire cybersecurity industry, as it brings together two recognized innovators to create the world’s largest pure-play Managed Security Services Provider (MSSP).

Trustwave's database protection solution, DbProtect, now supports Snowflake, which is a popular, cloud-based data warehousing platform used by organizations to power AI models and data-driven workflows. Snowflake's cloud-based architecture separates storage and compute functions, allowing organizations to scale each independently. The platform's ability to handle both structured and semi-structured data makes it a preferred choice for a broad range of AI and analytics applications.

One of the most dangerous aspects of the dark web is that it provides like-minded threat actors a haven to gather, discuss, develop, and sell access to technology companies, which are often the first link in a supply chain attack. Alternatively, it's an environment where those looking to enter the world of cybercrime and initiate a third-party attack can buy the tools necessary to begin their operation. Trustwave SpiderLabs report Technology Industry Deep Dive.

As cyber threats grow in frequency and sophistication, organizations are increasingly turning to managed security services to help monitor, detect, and respond to attacks. Two prominent security solutions have emerged to these needs: Managed Detection and Response (MDR) and Managed Extended Detection and Response (MXDR). While both aim to enhance an organization's ability to detect and respond to threats, they differ significantly in scope, capabilities, and suitability for various environments.

Trustwave SpiderLabs has assessed with high confidence that the threat group Blind Eagle, aka APT-C-36, is associated with the Russian bulletproof hosting service provider Proton66. Blind Eagle is a threat actor actively targeting organizations across Latin America, with a notable focus on Colombian financial institutions.

While all manner of legitimate organizations are attempting to understand how to best and safely use artificial intelligence to improve productivity, the Trustwave SpiderLabs' Technology Deep Dive: AI Cyber Arms Race takes a forward-looking view at how adversaries are gaining experience and capability in their ability to turn AI against us.

Threat actors know that technology makes the world go round, and these adversaries are more than willing to use every cyber weapon at their disposal to take advantage of that fact, according to Trustwave SpiderLabs’2025 Trustwave Risk Radar Report: Technology Sector.

Threat actors know that technology makes the world go round, and these adversaries are more than willing to use every cyber weapon at their disposal to take advantage of that fact, according to Trustwave SpiderLabs’ 2025 Trustwave Risk Radar Report: Technology Sector.

Organizations often assume that restoring a backup to a patched environment eliminates threats. However, backups encapsulate both data and schema objects, including triggers. A compromised backup, often taken after an initial breach, may contain hidden triggers that reactivate the attacker’s access upon restore. This post explores how malicious triggers in compromised backups can serve as persistence mechanisms for attackers and how to mitigate this threat.