RL Blog
Spectra Analyze: YARA Retrohunting

How to Use YARA Retrohunting for Defense

Learn how to use RL’s analysis of "pkr_mtsi" to advance your detection engineering in Spectra Analyze.

Read More about How to Use YARA Retrohunting for Defense
How to Use YARA Retrohunting for Defense
Commercial software risk

Commercial software risk: New controls required

Legacy strategies and tooling can’t manage today’s software threats. Here’s why binary analysis is necessary.

Read More about Commercial software risk: New controls required
Commercial software risk: New controls required
Inside the ‘graphalgo’ fake crypto developer recruitment campaign

Inside the fake crypto developer recruitment hack

Here’s a more-in-depth technical analysis of the packages involved in the "graphalgo" campaign.

Read More about Inside the fake crypto developer recruitment hack
Inside the fake crypto developer recruitment hack
Fake recruiter campaign targets crypto developers with RAT

Fake recruiter campaign targets crypto devs

A new branch of a fake job recruitment campaign, dubbed "graphalgo," is targeting developers with a RAT.

Read More about Fake recruiter campaign targets crypto devs
Fake recruiter campaign targets crypto devs
CISO Playbook Insights

Gartner® CISO Playbook for Commercial SSCS: 3 key insights

Here are the takeaways CISOs and other security leaders should consider for their TPCRM strategies.

Read More about Gartner® CISO Playbook for Commercial SSCS: 3 key insights
Gartner® CISO Playbook for Commercial SSCS: 3 key insights
AppSec and trust

Notepad++ hack: Supply chain threats evolve

A compromise of the source code editor underscores attack method diversification. It's time to go beyond trust.

Read More about Notepad++ hack: Supply chain threats evolve
Notepad++ hack: Supply chain threats evolve
MCP security robot

Lab offers 9 ways to improve MCP security

The Vulnerable MCP Servers Lab delivers integration training, demos, and instruction on attack methods.

Read More about Lab offers 9 ways to improve MCP security
Lab offers 9 ways to improve MCP security
SSCS Report 2026: 2025 Retrospective

RL SSCS Report: A 2025 retrospective

ReversingLabs looked at last year’s Software Supply Chain Security Report in the rear-view mirror. Here’s what RL got right — and wrong.

Read More about RL SSCS Report: A 2025 retrospective
RL SSCS Report: A 2025 retrospective
Researchers Notebook

Inside the EmEditor supply chain compromise

By combining early infrastructure detection with supply chain security controls you can give your defenders a leg up.

Read More about Inside the EmEditor supply chain compromise
Inside the EmEditor supply chain compromise
AI coding new life for Rust

How AI coding is breathing new life into Rust 

AI tools are making Rust a favorite language of developers — even those maintaining codebases like Microsoft’s.

Read More about How AI coding is breathing new life into Rust 
How AI coding is breathing new life into Rust 
SSCS Report 2026: Guidance timeline

RL SSCS Report 2026: A guidance timeline

Here are the guidelines, mandates, frameworks, and goals that have refined software supply chain security policy.

Read More about RL SSCS Report 2026: A guidance timeline
RL SSCS Report 2026: A guidance timeline
SSCS Report 2026 key takeaways

RL SSCS Report 2026: 5 key takeaways

OSS and dev tools are targets as AI risk rises. Learn more in the Software Supply Chain Security Report 2026.

Read More about RL SSCS Report 2026: 5 key takeaways
RL SSCS Report 2026: 5 key takeaways
Open-source software (OSS)

Anthropic’s PSF investment: Why it matters

Here’s what the $1.5M investment in the Python Software Foundation will mean for AI coding and open-source security.

Read More about Anthropic’s PSF investment: Why it matters
Anthropic’s PSF investment: Why it matters
AppSec is a journey

SSDF 1.2 sees AppSec as a journey

NIST has broadened the Secure Software Development Framework to include the full SDLC. Here’s why it matters.

Read More about SSDF 1.2 sees AppSec as a journey
SSDF 1.2 sees AppSec as a journey
SBOM: check

Mandatory SBOMs: Why CRA matters

The EU’s Cyber Resilience Act legally obliges software producers to create and maintain an SBOM. Are you prepared?

Read More about Mandatory SBOMs: Why CRA matters
Mandatory SBOMs: Why CRA matters
Previous1...456...57Next

Topics

All Blog PostsAppSec & Supply Chain SecurityDev & DevSecOpsProducts & TechnologySecurity OperationsThreat Research
Why RL Built Spectra Assure Community

Why RL Built Spectra Assure Community

We set out to help dev and AppSec teams secure the village: OSS dependencies, malware, more. Learn how.

Read More about Why RL Built Spectra Assure Community
Why RL Built Spectra Assure Community

Follow us

XX / TwitterLinkedInLinkedInFacebookFacebookInstagramInstagramYouTubeYouTubeblueskyBluesky

Subscribe

Get the best of RL Blog delivered to your in-box weekly. Stay up to date on key trends, analysis and best practices across threat intelligence and software supply chain security.

ReversingLabs: The More Powerful, Cost-Effective Alternative to VirusTotalSee Why
Skip to main content
Contact UsSupportBlogCommunity
reversinglabsReversingLabs: Home
Solutions
Secure Software OnboardingSecure Build & ReleaseProtect Virtual MachinesIntegrate Safe Open SourceGo Beyond the SBOM
Increase Email Threat ResilienceDetect Malware in File Shares & StorageAdvanced Malware Analysis SuiteICAP Enabled Solutions
Scalable File AnalysisHigh-Fidelity Threat IntelligenceCurated Ransomware FeedAutomate Malware Analysis Workflows
Products & Technology
Spectra Assure®Software Supply Chain SecuritySpectra DetectHigh-Speed, High-Volume, Large File AnalysisSpectra AnalyzeIn-Depth Malware Analysis & Hunting for the SOCSpectra IntelligenceAuthoritative Reputation Data & Intelligence
Spectra CoreIntegrations
Industry
Energy & UtilitiesFinanceHealthcareHigh TechPublic Sector
Partners
Become a PartnerValue-Added PartnersTechnology PartnersMarketplacesOEM Partners
Alliances
Resources
BlogContent LibraryCybersecurity GlossaryConversingLabs PodcastEvents & WebinarsLearning with ReversingLabsWeekly Insights Newsletter
Customer StoriesDemo VideosDocumentationOpenSource YARA Rules
Company
About UsLeadershipCareersSeries B Investment
Events
Press ReleasesIn the News
Pricing
Software Supply Chain SecurityMalware Analysis and Threat Hunting
Request a demo
Menu

Spectra Assure Free Trial

Get your 14-day free trial of Spectra Assure for Software Supply Chain Security

Get Free TrialMore about Spectra Assure Free Trial
Blog
Events
About Us
Webinars
In the News
Careers
Demo Videos
Cybersecurity Glossary
Contact Us
reversinglabsReversingLabs: Home
Privacy PolicyCookiesImpressum
All rights reserved ReversingLabs © 2026
XX / TwitterLinkedInLinkedInFacebookFacebookInstagramInstagramYouTubeYouTubeblueskyBlueskyRSSRSS
Back to Top