Almost two weeks after Russian authorities claimed to have dismantled the REvil ransomware group with a string of arrests, evidence for a reduction in the availability of REvil implants has yet to appear.
We came into 2021 well aware of the risks ransomware posed. Even that didn’t prepare us for what was to come, as ransomware gangs and nation states launched attacks on critical infrastructure with cyber-physical consequences
Ransomware may have grabbed most of the headlines, but history will remember 2021 as the year that governments and companies finally woke up to the lurking threat posed by vulnerable software supply chains
This blog discusses the process used to find another NPM package that steals saved Chrome browser passwords.
Recognizing risks introduced by statically linked third-party libraries
They say there’s no such thing as bad press, but getting name recognition for a data breach never feels good. Enter Codecov.
Relying on legacy functionalities comes with inherent security risks
One of the core tenets of computer science is code reuse.
The SunBurst supply chain attack, which was behind the breach of SolarWinds, took sophistication and patience.
Tearing Down HWP Files To Expose a Trojan
