From the Labs: YARA Rule for Detecting GoodWill

ReversingLabs’ YARA detection rule for GoodWill can help you find this ransomware in your environment.

ConversingLabs: Unpacking the Follina exploit

In our latest episode of the ConversingLabs podcast, host Paul Roberts interviews ReversingLabs researcher Joseph Edwards about his analysis of Follina, a newly discovered exploit with a pretty name, but nasty intentions. 

The Week in Cybersecurity: Vice Society ransomware group targets back-to-school

Vice Society ransomware group targets America’s education sector, the U.S. government’s new position on software supply chain security, and more.

Enduring Security Framework's software supply chain guidelines: A roadmap for the post-SolarWinds world

New federal guidance codifies lessons from the SolarWinds hack, including for securing third-party code and development pipelines. A software bill of materials (SBOM) is central. Here are four key takeaways.

From the Labs: YARA Rule for Detecting Blue Locker

ReversingLabs’ open source YARA detection rule for Blue Locker can help you find this ransomware in your environment.

The SBOM is evolving: 4 key trends boosting software supply chain security

Software bills of materials will never be a panacea for software supply chain security. Here are key trends that will deliver some welcome evolution, however.

From the Labs: YARA Rule for Detecting Acepy

ReversingLabs’ YARA detection rule for Acepy can help you find this ransomware in your environment.

The Week in Cybersecurity: Cyber espionage operation fueled for months by targeted phishing attacks

A China-linked cyber espionage campaign targets critical entities in Australia and the South China Sea, password manager LastPass gets hacked (again), and more

New malicious packages in PyPI: What it means for securing open source repositories

After a recent discovery of malicious PyPI packages, questions remain about the security community’s ability to mitigate threats posed to open source repositories.

The Week in Cybersecurity: French hospital hit with ransomware attack

Cybercriminals are continuing to target medical facilities, Twitter’s alleged lack of cybersecurity measures, and more.

How abuse.ch evolved into an essential threat hunting platform

To secure your CI/CD pipelines, round up the usual suspects

A presentation at the Black Hat Briefings in Las Vegas dug into the “how” of CI/CD compromises. As it turns out, many of the culprits will be familiar to security teams.

6 reasons AppSec teams should shift gears and go beyond legacy vulnerabilities

The National Vulnerability Database represents a minority of software supply chain threats. With attacks surging, teams must shift focus from vulnerabilities to malware.

The Week in Cybersecurity: Cybercrime growth outpaces the security industry

Evidence has surfaced of cybercrime’s fast-paced growth in 2022, a new Google Chrome zero-day vulnerability is being exploited, and more.

Black Hat: We should have seen the Colonial ransomware attack coming, says Kim Zetter

Few need to be reminded of the fears that the Colonial Pipeline hack caused in May of 2021, in which airlines scrambled to keep their planes fueled for long-haul flights and Americans across the eastern seaboard panic-bought gas in expectation of supply disruptions.