%term

Understanding Ransomware Email Threats

Dec 18, 2025 By Jeff Darrington In Graylog

The Ransomware-as-a-Service (RaaS) ecosystem has changed the look and shape of modern day ransomware attacks. Malicious actors typically view their cybercrimes as a business, hoping to make the most amount of money with the least amount of effort. For example, according to research, AI-automated phishing attacks performed similarly to human generated ones and 350% better than the ones sent to the control group.

Read Post

Graylog

Read more about Understanding Ransomware Email Threats

How PPC Campaign Vulnerabilities Can Lead to Ransomware Attacks

Dec 18, 2025 By SecuritySenses In SecuritySenses

In the US, search ad spend was expected to reach $124.59 billion in 2024. Those big pay-per-click (PPC) advertising budgets are attracting the attention of cybercriminals. Click fraud is a well-known hazard in marketing circles. However, a more insidious threat lurks in the background.

Read Post

SecuritySenses

Read more about How PPC Campaign Vulnerabilities Can Lead to Ransomware Attacks

CTI roundup: Shanya, GrayBravo, Storm-0249

Dec 16, 2025 By Tanium In Tanium

Shanya PaaS spreads among ransomware groups, GrayBravo expands its footprint, and Storm-0249 exploits EDR processes to hide malicious activity.

Read Post

Tanium

Read more about CTI roundup: Shanya, GrayBravo, Storm-0249

Ransomware Remediation Tactics That Help You Recover Fast

Dec 15, 2025 By SafeAeon Inc. In SafeAeon

Ransomware attacks have grown stronger in the last few years. Attackers are now stealing data before locking it. They also pressure victims by posting stolen files on the internet. There are groups that sell ransomware kits, making these attacks easy to run. This has made things worse for businesses all around the world. Teams are looking for ransomware remediation tactics that help them recover fast and reduce the chance of the attacker returning.

Read Post

SafeAeon

Read more about Ransomware Remediation Tactics That Help You Recover Fast

Intel Chat: React2Shell, GeminiJack vulnerability, proRussia hacktivist arrested & Warp Panda [276]

Dec 15, 2025 By LimaCharlie In LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community. Original CrowdStrike article. CISA BRICKSTORM Backdoor breakdown. Analysis report PDF. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows.

View Video

LimaCharlie

Read more about Intel Chat: React2Shell, GeminiJack vulnerability, proRussia hacktivist arrested & Warp Panda [276]

2025 cloud security roundup: How attackers abused identities, supply chains, and AI

Dec 15, 2025 By Mallory Mooney In Datadog

In 2025, many of the long-standing cloud security concerns remained, but new areas of focus also developed. The significant increase in AI adoption enabled organizations to deliver features faster but also introduced new attack surfaces, such as untrusted or unpredictable user input for large language model (LLM) applications. At the same time, long-lived credentials and vulnerabilities in third-party packages continued to expose cloud environments to risk.

Read Post

Datadog

Read more about 2025 cloud security roundup: How attackers abused identities, supply chains, and AI

Unleash Agents. Not Risk.

Dec 12, 2025 By Rubrik In Rubrik

AI agents can increase productivity, but without proper governance and centralized oversight, they can cause destruction. Now more than ever, organizations urgently need a control layer for AI agents as a part of their rollout strategy. Rubrik Agent Cloud is designed to monitor and audit agent actions, enforce real-time policies and guardrails, and undo agent mistakes. Built on the Rubrik Platform that uniquely combines data, identity, and application contexts, Rubrik Agent Cloud will deliver security, accuracy, and efficiency as they transform with AI.

View Video

Rubrik

Read more about Unleash Agents. Not Risk.

All things AI and malware with Randy Pargman

Dec 11, 2025 By LimaCharlie In LimaCharlie

Join us for this week's Defender Fridays as we explore the reality of AI-powered malware threats with Randy Pargman, Senior Director of Threat Detection at Proofpoint. At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.

View Video

LimaCharlie

Read more about All things AI and malware with Randy Pargman

CTI roundup: Hybrid 2FA phishing, RomCom, MuddyWater

Dec 10, 2025 By Tanium In Tanium

Hybrid 2FA phishing threatens enterprises, RomCom uses SocGholish to deploy Mythic Agent malware, and MuddyWater targets critical infrastructure with evolving tactics.

Read Post

Tanium

Read more about CTI roundup: Hybrid 2FA phishing, RomCom, MuddyWater

Stealc Infostealer: A Deep Dive into Its Evolution, Operations, and Threat Landscape

Dec 10, 2025 By Foresiet In Foresiet

Stealc, an information-stealing malware operating as Malware-as-a-Service (MaaS), has emerged as a potent tool in the cybercriminal arsenal since its debut in early 2023. Advertised on Russian-speaking underground forums. Established stealers such as Vidar, Raccoon, Mars, and RedLine, offering customizable data exfiltration for browsers, cryptocurrency wallets, and applications. Its non-resident design minimizes footprints, enabling stealthy theft of credentials, cookies, autofill data, and files.

Read Post