Resources
Providing you the latest industry-specific news and insights.
- article
Managed File Transfer Exploits: Here to Stay?
Cybercriminals exploit MFT vulnerabilities in CentreStack and GoAnywhere, enabling remote code execution and access to sensitive data.
Read more - article
Scattered Spider Claims to be Going Dark
The Scattered Spider cybercrime group announced it was going dark, but evidence suggests ongoing operations.
Read more - article
Multiple Threat Groups Using New EDRKillShifter Builds
Multiple ransomware groups now use updated EDRKillShifter builds to disable EDR protections via BYOVD and HeartCrypt, targeting major security platforms.
Read more - article
Akira Targeting SonicWall Devices (Again)
Akira ransomware targets SonicWall firewalls via a suspected zero-day vulnerability, prompting urgent reviews of device security and access controls.
Read more - article
Suspected North Korean Actors Pull off the Largest Crypto Heist in History
Bybit suffered a massive $1.4B Ethereum theft in 2025, linked to North Korean hackers. Learn how the attack happened and what it means for crypto security.
Read more - article
Sanctions Against Zservers
The US, UK, and Australia sanctioned bulletproof hosting provider Zservers (XHOST) for aiding ransomware groups like LockBit. The Netherlands seized 127 servers. Arete tracks its impact on cybercrime, as law enforcement actions disrupt threat actor o
Read more - article
AWS Falls Victim to Ransomware
Emerging ransomware Codefinger encrypts AWS S3 buckets via SSE-C, targeting cloud data for ransom. Learn about the impact and potential risks of this tactic.
Read more - article
BianLian
BianLian extorts victims with aggressive tactics. Learn about its ransom trends, evolving threats, and the FBI’s findings on recent scam letters.
Read more - article
Threat Actors Attempting to Sell Data While Extorting Victims
Discover how cyber threat actors like "wonder" and "M0riarty" monetize stolen data through BreachForums and ransomware tactics.
Read more - article
Interlock: An Emerging Ransomware Threat
An analysis of the Interlock ransomware group, their tactics, and their impact across various industries.
Read more - article
Black Basta Leverages New Social Engineering Technique
Black Basta, a ransomware group active since at least April 2022, is deploying a new social engineering tactic using Microsoft Teams in an active campaign.
Read more - article
The Return of Bumblebee Loader
After its disruption in May 2024, Bumblebee is back in the cyber ecosystem, using a new infection chain with LNK, PowerShell, and MSI files to drop additional malware.
Read more