Malware analyst 3xp0rt has uploaded a Lockbit 3 ransomware builder, allowing anyone to build executables for their own operation.

This week we report Emotet is still active. The DFIR Report describes an incident in May 2022 which began with

This week we analyze the latest campaign of the alleged Russian #threatactor TA505 and how it uses ServHelper and TeslaGun

This week we focus on Mobile Banking Trojan Ermac, aimed at stealing credentials from financial and Cryptocurrency applications.

This week read how LockBit suffered a DDoS attack following its #ransomware attack on Entrust – not the first time

In this week’s summary our Cyber news features the collaboration of the Microsoft Threat Intelligence Center (MSTIC), Google Threat Analysis

Our Cyber news this week majors on Microsoft’s recent Patch Tuesday Vulnerability update which deals with 121 flaws.

We report on SentinelOne’s findings on LockBit’s latest method which employs the MpCmdRun.exe executable, which is extremely difficult to detect.

This week we cover a spearphishing campaign attributed to Evilnum, which is targeting DeFi platforms in Europe.

QuoIntelligence analyzes the consequences of China’s strategy for critical industries particularly exposed to cyber espionage as well as its effects