Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Trustwave, A LevelBlue Company, is proud to unveil D-Fence, a powerful new machine learning-based anti-phishing layer now seamlessly integrated into MailMarshal that captures 40% more phishing emails. This capability is needed now more than ever as phishing attacks are among the top three attack vectors, according to the FBI.

Today marks an exciting day for LevelBlue and for the broader cybersecurity industry. I’m pleased to announce that LevelBlue has completed its acquisition of Trustwave, a global leader in cybersecurity and managed detection and response (MDR). This is more than a business transaction; it’s a strategic leap forward in our mission to redefine what it means to be a trusted cybersecurity partner in an increasingly complex, high-stakes world.

Organizations across Australia and New Zealand are increasingly confronted with the challenge of bridging the cybersecurity talent shortage with 69 per cent of ICT professional occupations in shortage, a gap that compounds concern as the complexity of cyberthreats continues to evolve. Faced with a finite talent pool, businesses must find innovative ways to maintain their security posture without sacrificing operational efficiency or increasing strain on their resources.

First appearing in the late 1990s, the Managed Security Services Provider (MSSP) market is one of the most mature service offerings in the cybersecurity sector. However, this sector remains increasingly important and Trustwave is a continuous innovator in the space, as can be seen by Frost & Sullivan naming Trustwave 2024 Company of the Year in the Americas Managed Security Services Industry.

As security researchers, we actively monitor the latest CVEs and their publicly available exploits to create signatures. Beyond CVEs, we also hunt for malware on platforms such as MalwareBazaar, which enhances our visibility into attacks occurring across networks. Today, we'll demonstrate a simple workflow showing how researchers use various tools to collect indicators of compromise (IOCs) and develop appropriate signatures from detonated malware.

The importance of a cybersecurity vendor being Federal Risk and Authorization Management Program (FedRAMP) authorized cannot be understated. In February 2025, after a multi-year process, Trustwave achieved full FedRAMP authorization for its Government Fusion platform, becoming the first pure-play Managed Detection and Response (MDR) provider to do so.

The current trends in healthcare technology adoption present an interesting dynamic. Healthcare systems globally have been and continue to experience rapid digital transformation to the point where we now see increasingly embracing AI, internet-connected medical devices and telehealth solutions. Trustwave SpiderLabs captured what is taking place in its recent report Cybersecurity Challenges for Healthcare in 2025.

Trustwave SpiderLabs researchers have recently identified an EncryptHub campaign that combines social engineering with abuse of the Brave Support platform to deliver malicious payloads via the CVE-2025-26633 vulnerability. In this blog post, we will break down the techniques used in the campaign and highlight the new tools employed by the threat group.

Managed Detection and Response (MDR) services are experiencing significant growth due to the increasing sophistication and frequency of cyberthreats. As the cybersecurity landscape continues to evolve with more frequent, targeted, and sophisticated threats, organizations are increasingly turning to MDR to shore up their cyber defenses. But what exactly is behind the rising adoption of MDR security services, and what makes these services such a compelling option for modern enterprises?

The Trustwave SpiderLabs CTI team began correlating telemetry from multiple enterprise environments in response to a rapidly developing threat landscape involving the widespread exploitation of Microsoft SharePoint on-premises infrastructure. In this blog, we share key findings from several observed intrusions across our monitored environments.