%term

Inside the Mind of a Stealer Log Aggregator: An Interview with MoonCloud

Aug 5, 2025 By Foresiet In Foresiet

In today’s threat landscape, the market for stealer logs—collections of credentials, browser data, and session cookies harvested through infostealers—continues to evolve. While many threat actors have come and gone, others have adapted and built significant operations around data resale, log aggregation, and credential-based exploitation. We spoke directly with MoonCloud, one of the more active stealer log aggregators operating in 2025.

Read Post

Foresiet

Read more about Inside the Mind of a Stealer Log Aggregator: An Interview with MoonCloud

Malware, Language, and Clues You're Missing

Aug 5, 2025 By Rubrik In Rubrik

Think malware is all code? Think again. Cyber threat intelligence expert Dustin Droullard reveals how cultural indicators, like language settings and regional context, offer hidden clues in cyber investigations. Understanding human behavior isn’t a bonus in cybersecurity. It’s the strategy. Listen to the full episode.

View Video

Rubrik

Read more about Malware, Language, and Clues You're Missing

The Geopolitical Security Playbook: When Nations Clash in Cyberspace

Aug 5, 2025 By Rubrik In Rubrik

In this episode of Data Security Decoded, host Caleb Tolin sits down with Dustin Droullard, a cyber threat intelligence expert and former Army intelligence analyst, to discuss how global conflict is increasingly playing out in cyberspace, from digital espionage to civilian-targeted cyber operations. This episode highlights why organizations must rethink their cyber risk strategies in light of modern geopolitical threats and growing digital exposure.

View Video

Rubrik

Read more about The Geopolitical Security Playbook: When Nations Clash in Cyberspace

Arctic Wolf Observes July 2025 Uptick in Akira Ransomware Activity Targeting SonicWall SSL VPN

Aug 1, 2025 By Julian Tuin In Arctic Wolf

In late July 2025, Arctic Wolf observed an increase in ransomware activity targeting SonicWall firewall devices for initial access. In the intrusions reviewed, multiple pre-ransomware intrusions were observed within a short period of time, each involving VPN access through SonicWall SSL VPNs. While credential access through brute force, dictionary attacks, and credential stuffing have not yet been definitively ruled out in all cases, available evidence points to the existence of a zero-day vulnerability.

Read Post

Arctic Wolf

Read more about Arctic Wolf Observes July 2025 Uptick in Akira Ransomware Activity Targeting SonicWall SSL VPN

AI meets ransomware: a new cyber threat

Jul 31, 2025 By Brittany Posey In Avast

AI is powering a new wave of ransomware. Learn how Avast stopped FunkSec's attack and how you can protect your files from evolving cyber threats. Ransomware has long been one of the most feared cyber threats on the internet, and for good reason. It’s fast, disruptive, and increasingly effective at locking up your most important files and demanding payment in exchange for their return. It’s not just businesses that get hit, either.

Read Post

Avast

Read more about AI meets ransomware: a new cyber threat

Malicious Connectors Potentially Impact Hundreds of Millions of Microsoft 365 Users

Jul 31, 2025 By Roger Grimes In KnowBe4

Most Microsoft 365 users aren’t aware of this recently growing serious email threat vector. I have been teaching about the risks of Microsoft email rules, forms and connectors on email clients and servers for decades. Both can be created by an attacker learning your email address and logon credentials (e.g., password or MFA codes).

Read Post

KnowBe4

Read more about Malicious Connectors Potentially Impact Hundreds of Millions of Microsoft 365 Users

Anubis and the Death of Data: A New Era of Ransomware Operations

Jul 30, 2025 By Emma Stevens In BitSight

Ransomware activity continues to increase, and Bitsight data illustrates the scale of this growth. In our State of the Underground 2025 report, Bitsight TRACE observed a nearly 25% rise in unique ransomware victims publicly listed on leak sites. Additionally, the number of leak sites operated by ransomware groups grew by 53%.

Read Post

BitSight

Read more about Anubis and the Death of Data: A New Era of Ransomware Operations

CTI Roundup: Katz Stealer, Lumma, NailaoLocker

Jul 30, 2025 By Tanium In Tanium

Katz Stealer seeks credentials and crypto assets, Lumma Stealer returns after a disruption, NailaoLocker ransomware targets Windows.

Read Post

Tanium

Read more about CTI Roundup: Katz Stealer, Lumma, NailaoLocker

Enterprise SAN Data Recovery: Protecting Critical Systems from Catastrophic Loss

Jul 30, 2025 By SecuritySenses In SecuritySenses

The current world of business is a world of the digital age, where enterprise operations are greatly dependent on the constant availability of data. With the growth of organizations ' storage facilities, Storage Area Networks (SANs) have worked as the medium of fast, scalable, and reliable access to data. Nevertheless, SAN systems are pretty dangerous when they break down (be it a system hardware trouble, hacking, or human negligence), as the consequences may be disastrous.

Read Post

SecuritySenses

Read more about Enterprise SAN Data Recovery: Protecting Critical Systems from Catastrophic Loss

Ransomware As A Service: Understanding the Risks

Jul 29, 2025 By Internxt In Internxt

As companies invest in cybersecurity to avoid fines and ransomware payouts, criminals are doing the opposite by turning ransomware into a full-blown business. With ransomware as a service (RaaS), cybercriminals are building revenue streams by selling ransomware kits online. This model doesn’t require technical skills or deep knowledge of hacking.

Read Post