RL Blog
Operation Cronos and the LockBit takedown: What we know

Operation Cronos and the LockBit takedown: What we know

The U.S., U.K., Canada and eight partner countries have disrupted the LockBit ransomware group. Here are the key takeaways, along with expert insights. Carolynn van Arsdale

Read More about Operation Cronos and the LockBit takedown: What we know
Operation Cronos and the LockBit takedown: What we know
blindfolded person running with a briefcase

4 ways hero culture is killing your security program's effectiveness

Learn why cybersecurity hero culture is a problem — and how companies can avoid its negative effects and develop more resilient security operations.

Read More about 4 ways hero culture is killing your security program's effectiveness
4 ways hero culture is killing your security program's effectiveness
guy surrounded by a ton of computers and monitors

Attackers leverage PyPI to sideload malicious DLLs

RL discovered two malicious packages and a subsequent larger campaign, showing that the approach is an emerging software supply chain attack method.

Read More about Attackers leverage PyPI to sideload malicious DLLs
Attackers leverage PyPI to sideload malicious DLLs
man looking at pixelated laptop screen

5 key takeaways from ESG's software supply chain complexity report

"The Growing Complexity of Securing the Software Supply Chain" report highlights key challenges for application security teams. Here's what you need to know.

Read More about 5 key takeaways from ESG's software supply chain complexity report
5 key takeaways from ESG's software supply chain complexity report
iron number five nailed to a wood plank

5 notable supply chain compromises

2023 was a big year for software security. Here are the key lessons from last year's major attacks to learn from.

Read More about 5 notable supply chain compromises
5 notable supply chain compromises
we heart our partners text on pink purple gradient

Meet the New RL Partner Program

Let’s band together for the love of security

Read More about Meet the New RL Partner Program
Meet the New RL Partner Program
Upgrade your AppSec for a new era

Upgrade your AppSec for a new era

Do you trust your AppSec? Upgrade your approach with binary analysis — the next generation of tooling for the era of software supply chain security.

Read More about Upgrade your AppSec for a new era
Upgrade your AppSec for a new era
siem soar upward graph line

Increase Your SIEM and SOAR ROI with ReversingLabs

Drive down both mean time to detect and mean time to respond in your SOC.

Read More about Increase Your SIEM and SOAR ROI with ReversingLabs
Increase Your SIEM and SOAR ROI with ReversingLabs
envelopes with pixelated bugs crawling out of them

How to Stop Phishing Attacks Being Missed

Unveiling the Hidden Threats: Enhancing Email Security with Object-Level Analysis

Read More about How to Stop Phishing Attacks Being Missed
How to Stop Phishing Attacks Being Missed
Definitive timeline: Federal guidance on software supply chain security

Definitive timeline: Federal guidance on software supply chain security

With the rise in attacks, U.S. agencies have been busy crafting policy to tackle the problem. Here are the major initiatives and mandates that matter.

Read More about Definitive timeline: Federal guidance on software supply chain security
Definitive timeline: Federal guidance on software supply chain security
red highlighted key saying risk on computer keyboard

The Cloudflare source code breach: Lessons learned

This latest incident underscores the continuing risks to organizations posed by both third-party software and leaks of development secrets.

Read More about The Cloudflare source code breach: Lessons learned
The Cloudflare source code breach: Lessons learned
seize the day printed on ripped paper blue background

CISO accountability in the era of software supply chain attacks

CISOs today need to act and be treated more like CFOs. Here's what they need to know — and why they should seize the day and prioritize security.

Read More about CISO accountability in the era of software supply chain attacks
CISO accountability in the era of software supply chain attacks
multi story glass car dealership

Lessons from the Mercedes-Benz GitHub source code leak

Here's what we know about the automaker's latest secrets breach — and lessons your security team can draw from it.

Read More about Lessons from the Mercedes-Benz GitHub source code leak
Lessons from the Mercedes-Benz GitHub source code leak
hand holding on to metal hook

HPE, Microsoft breach disclosures mark new era of CISO accountability

New revelations show Russia’s SVR has stepped up cyber-espionage. They also spotlight how public companies are on the hook with the SEC’s disclosure laws.

Read More about HPE, Microsoft breach disclosures mark new era of CISO accountability
HPE, Microsoft breach disclosures mark new era of CISO accountability
gitgot logo with exclamation mark in o

GitGot: GitHub leveraged by cybercriminals to store stolen data

ReversingLabs researchers found two suspicious npm packages that demonstrate how GitHub is increasingly being used to easily deploy malware in novel ways.

Read More about GitGot: GitHub leveraged by cybercriminals to store stolen data
GitGot: GitHub leveraged by cybercriminals to store stolen data
Previous1...252627...57Next

Topics

All Blog PostsAppSec & Supply Chain SecurityDev & DevSecOpsProducts & TechnologySecurity OperationsThreat Research
Mario Vuksan

Gartner® Named RL a Software Supply Chain Security Visionary. Here’s What We See Coming

The first Magic Quadrant™ for Software Supply Chain Security comes as, we feel, the demand for greater supply chain visibility explodes.

Read More about Gartner® Named RL a Software Supply Chain Security Visionary. Here’s What We See Coming
Gartner® Named RL a Software Supply Chain Security Visionary. Here’s What We See Coming

Follow us

XX / TwitterLinkedInLinkedInFacebookFacebookInstagramInstagramYouTubeYouTubeblueskyBluesky

Subscribe

Get the best of RL Blog delivered to your in-box weekly. Stay up to date on key trends, analysis and best practices across threat intelligence and software supply chain security.

The inaugural Gartner® Magic Quadrant™ for Software Supply Chain Security is outWe're A Visionary
Skip to main content
Contact UsSupportBlogCommunity
reversinglabsReversingLabs: Home
Solutions
Secure Software OnboardingSecure Build & ReleaseProtect Virtual MachinesIntegrate Safe Open SourceGo Beyond the SBOM
Increase Email Threat ResilienceDetect Malware in File Shares & StorageAdvanced Malware Analysis SuiteICAP Enabled Solutions
Scalable File AnalysisHigh-Fidelity Threat IntelligenceCurated Ransomware FeedAutomate Malware Analysis Workflows
Products & Technology
Spectra Assure®Software Supply Chain SecuritySpectra DetectHigh-Speed, High-Volume, Large File AnalysisSpectra AnalyzeIn-Depth Malware Analysis & Hunting for the SOCSpectra IntelligenceAuthoritative Reputation Data & Intelligence
Spectra CoreIntegrations
Industry
Energy & UtilitiesFinanceHealthcareHigh TechPublic Sector
Partners
Become a PartnerValue-Added PartnersTechnology PartnersMarketplacesOEM Partners
Alliances
Resources
BlogContent LibraryCybersecurity GlossaryConversingLabs PodcastEvents & WebinarsLearning with ReversingLabsWeekly Insights Newsletter
Customer StoriesDemo VideosDocumentationOpenSource YARA Rules
Company
About UsLeadershipCareersSeries B Investment
Events
Press ReleasesIn the News
Pricing
Software Supply Chain SecurityMalware Analysis and Threat Hunting
Request a demo
Menu

Spectra Assure Free Trial

Get your 14-day free trial of Spectra Assure for Software Supply Chain Security

Get Free TrialMore about Spectra Assure Free Trial
Blog
Events
About Us
Webinars
In the News
Careers
Demo Videos
Cybersecurity Glossary
Contact Us
reversinglabsReversingLabs: Home
Privacy PolicyCookiesImpressum
All rights reserved ReversingLabs © 2026
XX / TwitterLinkedInLinkedInFacebookFacebookInstagramInstagramYouTubeYouTubeblueskyBlueskyRSSRSS
Back to Top