%term

SpiderLabs Ransomware Tracker Update October 2025: Qlin Doubles Down on Attacks

Nov 4, 2025 By Doug Olenick In LevelBlue

The worldwide ransomware landscape saw a dramatic shift in attacks in October 2025, jumping 41% month over month, with the most prolific attacker, Qlin, more than doubling the number of attacks it launched, according to Trustwave, A LevelBlue Company, research. The US remained the primary recipient of ransomware attacks, but October saw manufacturing overtake technology as the most targeted vertical sector.

Read Post

LevelBlue

Read more about SpiderLabs Ransomware Tracker Update October 2025: Qlin Doubles Down on Attacks

Ransomware isn't what it used to be.

Nov 4, 2025 By WatchGuard Technologies In WatchGuard

In Episode 348 of The 443 Podcast, we break down the latest shifts in ransomware and what they mean for defenders on the front lines.

View Video

WatchGuard

Read more about Ransomware isn't what it used to be.

Everything Runs on Software, But Most of It Isn't Secure

Nov 4, 2025 By Rubrik In Rubrik

Our economy, healthcare, energy, and even water systems are powered by software. But here’s the hard truth is that most of that software is built insecurely. And that’s why cyberattacks keep growing in scale and impact. When code underpins everything we rely on, every flaw becomes a national risk.

View Video

Rubrik

Read more about Everything Runs on Software, But Most of It Isn't Secure

Secure by Design, Secure by Default, Secure by Demand: The Signs of a Secure Software Supply Chain

Nov 4, 2025 By Rubrik In Rubrik

Welcome to Data Security Decoded. Join host Caleb Tolin in conversation with Lauren Zabierek, Senior Vice President for the Future of Digital Security at the Institute for Security and Technology. A former CISA leader and long-time national security professional, Lauren unpacks the principles of Secure by Design, Secure by Default, and Secure by Demand and how these frameworks are reshaping the software supply chain.

View Video

Rubrik

Read more about Secure by Design, Secure by Default, Secure by Demand: The Signs of a Secure Software Supply Chain

Intel Chat: BlackBasta, BlueNoroff, Operation ForumTroll & Aisuru [263]

Nov 3, 2025 By LimaCharlie In LimaCharlie

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows.

View Video

LimaCharlie

Read more about Intel Chat: BlackBasta, BlueNoroff, Operation ForumTroll & Aisuru [263]

Lab AI Ransomware Nearly Sparks Crisis

Oct 31, 2025 By Razorthorn Security In Razorthorn

A harmless academic AI ransomware prototype caused panic, showing just how thin the line now is between lab projects and live attack.

View Video

Razorthorn

Read more about Lab AI Ransomware Nearly Sparks Crisis

Juice Jacking Explained: Stay Safe at Public USB Chargers

Oct 31, 2025 By SafeAeon Inc. In SafeAeon

Recharging the battery of phones, tablets, or laptops in public places such as airports, stations, hotels, or cafés is quite normal and convenient. Everybody does it while traveling or working on the go. Most of these charging points rely on USB ports, which not only deliver power but also support data transfer. In recent years, cybersecurity authorities such as the FBI and the Federal Communications Commission (FCC) have warned users about a rising cyber threat known as juice jacking.

Read Post

SafeAeon

Read more about Juice Jacking Explained: Stay Safe at Public USB Chargers

The Return of the Invisible Threat: Hidden PUA Unicode Hits GitHub repositorties

Oct 31, 2025 By Ilyas Makari In Aikido

It wasn’t long ago that we uncovered compromised extensions on Open VSX. Now, a new wave of attacks is emerging, and all signs point to the same threat actor. The technique will sound familiar: hidden malicious code injected with invisible Unicode Private Use Area (PUA) characters. We first saw this trick back in March when npm packages used PUAs to conceal payloads. Then came Open VSX. Now, the attacker seems to have turned their sights on GitHub, and their methods are evolving.

Read Post

Aikido

Read more about The Return of the Invisible Threat: Hidden PUA Unicode Hits GitHub repositorties

Advanced Threat Hunting Demo: Brickstorm APT

Oct 30, 2025 By Rubrik In Rubrik

Is your VMware environment secure? A sophisticated backdoor called BRICKSTORM, used by espionage actor UNC5221, could be hiding in your vCenter backups right now. Restoring from a compromised snapshot means letting the attackers right back in. But what if your backups could be your best defense? In our new 4-minute demo, we walk through the exact steps to: Proactively hunt for BRICKSTORM within your backups using YARA rules. Instantly quarantine infected snapshots to stop the threat from spreading. Identify a guaranteed 'Gold Copy' for a fast, safe, clean-room recovery.

View Video

Rubrik

Read more about Advanced Threat Hunting Demo: Brickstorm APT

October 2025 Ransomware Update

Oct 30, 2025 By WatchGuard Technologies In WatchGuard

his week on the podcast, we have our resident ransomware expert, Ryan Estes, on to give an update on the latest in the ransomware ecosystem. We cover a few recent changes to operators, extortion techniques, and business impact from ransomware attacks in recent months.

View Video