Threat spotlight

PYSA, the ransomware attacking schools - PYSA is big game ransomware that's been used in targeted attacks against large private organizations, healthcare, and most recently, the education sector.

Ransomware | Threat spotlight

PYSA, the ransomware attacking schools

March 30, 2021 - PYSA is big game ransomware that's been used in targeted attacks against large private organizations, healthcare, and most recently, the education sector.

Read more
HelloKitty: When Cyberpunk met cy-purr-crime - HelloKitty was a relatively unheard-of ransomware family—until it became involved in an attack against the Polish video game developer, CD Projekt Red, in early February.

Threat spotlight

HelloKitty: When Cyberpunk met cy-purr-crime

March 18, 2021 - HelloKitty was a relatively unheard-of ransomware family—until it became involved in an attack against the Polish video game developer, CD Projekt Red, in early February.

Read more
Threat profile: Egregor ransomware is making a name for itself - The Egregror ransomware is quickly making a name for itself by victimizing big corporations. How does it work and what is its background?

Ransomware | Threat spotlight

Threat profile: Egregor ransomware is making a name for itself

December 15, 2020 - The Egregror ransomware is quickly making a name for itself by victimizing big corporations. How does it work and what is its background?

Read more
Threat spotlight: WastedLocker, customized ransomware - WastedLocker ransomware, attributed to the Russian Evil Corp gang, is such a targeted threat, you might call it a custom-built ransomware family.

Threat spotlight

Threat spotlight: WastedLocker, customized ransomware

July 10, 2020 - WastedLocker ransomware, attributed to the Russian Evil Corp gang, is such a targeted threat, you might call it a custom-built ransomware family.

Read more
Search hijackers change Chrome policy to remote administration - Search hijackers are always looking for ways to get and stay installed. Here is one that changed a Chrome policy and set it to remote administration.

Threat spotlight

Search hijackers change Chrome policy to remote administration

June 11, 2020 - Search hijackers are always looking for ways to get and stay installed. Here is one that changed a Chrome policy and set it to remote administration.

Read more
Maze: the ransomware that introduced an extra twist - Maze ransomware attacks featured the first group of cyber-criminals to add the threat of publishing exfiltrated data to the ransomware business model

Threat spotlight

Maze: the ransomware that introduced an extra twist

May 29, 2020 - Maze ransomware attacks featured the first group of cyber-criminals to add the threat of publishing exfiltrated data to the ransomware business model

Read more
Threat spotlight: RobbinHood ransomware takes the driver’s seat - RobbinHood a is a ransomware family that specifically targets organizations using a vulnerable kernel driver to prepare systems for encryption. Learn how to protect against it.

Threat spotlight

Threat spotlight: RobbinHood ransomware takes the driver’s seat

February 20, 2020 - RobbinHood a is a ransomware family that specifically targets organizations using a vulnerable kernel driver to prepare systems for encryption. Learn how to protect against it.

Read more
Business in the front, party in the back: backdoors in elastic servers expose private data - It's all too easy to discover data leaks online, especially in cloud services. We take a look at misconfigurations in elastic servers that lead to exposed data on the Internet.

Threat spotlight

Business in the front, party in the back: backdoors in elastic servers expose private data

January 17, 2020 - It's all too easy to discover data leaks online, especially in cloud services. We take a look at misconfigurations in elastic servers that lead to exposed data on the Internet.

Read more
Threat spotlight: Phobos ransomware lives up to its name - Phobos, which many believe was named after the Greek god of fear, isn’t as widespread as it was before nor is it more novel than your average ransomware. Yet, it remains a threat to consumers and businesses alike. We dive into Phobos ransomware and show users how to face their fears and protect against it.

Threat spotlight

Threat spotlight: Phobos ransomware lives up to its name

January 10, 2020 - Phobos, which many believe was named after the Greek god of fear, isn’t as widespread as it was before nor is it more novel than your average ransomware. Yet, it remains a threat to consumers and businesses alike. We dive into Phobos ransomware and show users how to face their fears and protect against it.

Read more

Select your language