ReversingLabs data shows that attachments that use decades-old scripting languages like XLM and VBA are often malicious. Still, Microsoft’s move to harden Excel and other Office apps may not move the security needle.
Read More about Microsoft disables Excel, Office macros by default. Will it matter?
Almost two weeks after Russian authorities claimed to have dismantled the REvil ransomware group with a string of arrests, evidence for a reduction in the availability of REvil implants has yet to appear.
Read More about After Russian arrests, REvil ransomware implants persist
Read More about Here’s what happened with Log4Shell while you were out
We came into 2021 well aware of the risks ransomware posed. Even that didn’t prepare us for what was to come, as ransomware gangs and nation states launched attacks on critical infrastructure with cyber-physical consequences
Read More about A look back at 2021: The year ransomware took the gloves off
Ransomware may have grabbed most of the headlines, but history will remember 2021 as the year that governments and companies finally woke up to the lurking threat posed by vulnerable software supply chains
Read More about A look back at 2021: The year supply chain threats went mainstream
This widespread vulnerability is an object lesson for why software development organizations and their customers should be using SBOMs.
Read More about Log4j: Why your organization needs to embrace software bills of materials
Operationalizing high fidelity threat intelligence can help your organization short circuit emerging ransomware attacks. Here’s how.
Read More about Get smart: Leverage threat intel to detect ransomware
No doubt about it, the way malicious actors attack their targets through software is changing.
Read More about Expanding Security Visibility To Reduce Software Supply Chain Risk
Find hidden software risks and prevent supply chain attacks
Read More about 3 Reasons for Appsec Folks to be Excited About ReversingLabs
It’s with tremendous excitement that I’m able to speak to our customers, partners and employees about the recent investment in ReversingLabs led by Crosspoint Capital Partners.
Read More about Crosspoint Capital Invests in ReversingLabs to Scale Supply Chain Security Offerings
This blog discusses the process used to find another NPM package that steals saved Chrome browser passwords.
Read More about Groundhog day: NPM package caught stealing browser passwords
Recognizing risks introduced by statically linked third-party libraries
Read More about Third-party code comes with some baggage
Extend Your Integrations and Enrich Your Workflows Using Python
Read More about ReversingLabs SDK for Python
The rise of software supply chain attacks, with SolarWinds SunBurst being the most notable, has elevated this issue with every board of directors for every company that’s producing or accepting software.
Read More about ReversingLabs Launches Managed Software Assurance Program