Microsoft reports the RaspberryRobin worm is now part of a malware ecosystem and one of the largest active malware distribution

The US publishes its new #NationalSecurity Strategy focussed on China and Russia and emphasizing the key role of the Indo-Pacific

This week the Microsoft Threat Intelligence Center reports on ransomware, “Prestige”, which targets transportation and logistics sectors in Poland and

A CISA advisory reveals vulnerabilities exploited by China-sponsored groups. PatchTuesday: Microsoft fixes 84 #vulnerabilities (inc two 0-day).

This week, we analyze new espionage-driven campaigns related to the Lazarus/ZINC activity cluster.

We are closely following increased geopolitical tensions after the potential sabotage attacks to Nordstream pipelines in the Baltic sea.

Malware analyst 3xp0rt has uploaded a Lockbit 3 ransomware builder, allowing anyone to build executables for their own operation.

This week we report Emotet is still active. The DFIR Report describes an incident in May 2022 which began with

This week we analyze the latest campaign of the alleged Russian #threatactor TA505 and how it uses ServHelper and TeslaGun

This week we focus on Mobile Banking Trojan Ermac, aimed at stealing credentials from financial and Cryptocurrency applications.