Quantum, once a popular ransomware gang, is no longer an active threat. However, ReversingLabs researchers created detection rules for a debugger evasion recently added to the Malware Behavior Catalog as Exception Flooding.
Read More about Detecting Debugger Evasion: Exception Flooding
ReversingLabs Software Supply Chain Security will be paired with Synopsys to spot malware and tampering in commercial, third-party, and open-source software.
Read More about ReversingLabs and Synopsys join forces to combat software supply chain threats
...
Read More about The Week in Security: Coalition takes down Russia's Snake espionage tool, GitHub plugs API leaks
In this ConversingLabs Cafe interview, Josh Corman, founder of I Am The Cavalry, talks about what’s behind industry skepticism around SBOMs.
Read More about Why fear rules when it comes to software bills of materials
It takes a village... Researchers play capture the flag to find vulns in tools like ChatGPT — with a White House assist.
Read More about Red teamers take on AI at DEF CON 31
Learn how ReversingLabs Threat Intelligence integrates with Sentinel to deliver deep visibility and automation that enhances the efficiency of SOC teams.
Read More about ReversingLabs File Enrichment API for Microsoft Sentinel
OpenSSF's updated framework is an essential tool for dev teams, but experts say it's incomplete as a supply chain security solution
Read More about SLSA 1.0 delivers build provenance: What application security teams need to know
Your journey toward a modern SOC should start with the right tools for dev and SecOps teams. Here's why — and steps to take.
Read More about Modernize your SOC with advanced malware analysis, real supply chain security — and best practices
The content pack provides Sentinel users with example content that works with ReversingLabs TitaniumCloud to tackle malware-related threats and bolster threat intelligence implementations.
Read More about ReversingLabs Content Pack for Microsoft Sentinel
Welcome to the latest edition of The Week in Security, which brings you the newest headlines from both the world and our team across the full stack of security: application security, cybersecurity, and beyond.
Read More about The Week in Security: Sunburst attack set off alarms for months before discovery
The Department of Justice stays on the down-low: Poster child for software supply chain security? The plot thickens...
Read More about SolarWinds hack: Did DOJ know 6 months earlier?
When deploying a SOAR tool, it's essential to automatically enrich alerts and data to give SOC analysts more context. Here's how data can be enriched, and a few examples of how to do so.
Read More about Smart Security Operations: How to Enrich Alerts and Data for SOC Efficiency
Here's why SBOMs are essential for cybersecurity incident response — and how to put them to work.
Read More about How to operationalize software bills of materials for incident response
The stakes were raised at RSA Conference 2023: A “hot” cyber war in Ukraine, software supply chain attacks on the rise — and let's not forget about artificial intelligence.
Read More about RSAC in review: Supply chain security, cyber war and AI
Here's what experts say about the CISA initiative's potential impact on software supply chain security — and security operations.
Read More about CISA Secure by Design: 'It's a starting point, not an endpoint'