Skip to Main Content

Resources

Providing you the latest industry-specific news and insights.

  • article

    Coinbase Data Breach Leads to Social Engineering Attacks

    The 2025 Coinbase data breach compromised 70,000 user accounts, exposed sensitive data, and triggered a $20M ransom demand alongside widespread phishing threats.

    Read more
  • article

    SonicWall VPN Flaws Exploited in the Wild

    SonicWall has confirmed active exploitation of two critical SMA100 flaws: CVE-2023-44221 and CVE-2024-38475. Users must patch promptly and review devices for unauthorized access.

    Read more
  • article

    RansomHub Leverages New “Betruger” Backdoor

    Betruger is a custom backdoor used in RansomHub ransomware attacks. It streamlines hacking with built-in tools for keylogging, C2 uploads, and privilege escalation.

    Read more
  • podcast

    Identifying Ransomware And Extortion Groups: Arete’s In-House Threat Intelligence Team

    Cyber threats are always evolving, and effectively defending against and responding to cybercriminals requires deep intelligence and ongoing analysis. In this episode of Bytes of Insight, host Vinny Sakore sits down with Kellyn Wagner Ramsdell, Associate Director of Threat Intelligence at Arete, to discuss how her team tracks and identifies ransomware and extortion groups.

    Read more
  • article

    Malware Spotlight: RansomHub Ransomware

    Arete has responded to dozens of incidents attributed to the RansomHub threat actor group. This spotlight explores RansomHub’s observed behavior, statistics from Incident Response engagements, and a technical analysis of RansomHub’s ransomware execut

    Read more
  • article

    Malware Spotlight: Akira Ransomware

    Arete has responded to over one hundred incidents attributed to the Akira ransomware group. This spotlight explores Akira’s observed behavior, statistics from Incident Response engagements, and a technical analysis of Akira’s ransomware executable.

    Read more
  • article

    Recent Sanctions Reveal LockBit and Evil Corp Links

    The US Department of the Treasury’s Office of Foreign Assets Control sanctioned seven individuals for their association with the Evil Corp cybercriminal group.

    Read more
  • podcast

    Cracking Down on Cybercrime: Law Enforcement Actions and Evolving Methods

    In this episode of Bytes of Insight, hosts Vinny Sakore and Evgueni Erchov explore recent law enforcement actions against cybercriminals, the evolution of methods used to pressure cybercriminals, and the value of collaboration with cybersecurity organizations. The discussion highlights key trends Arete has observed across the threat landscape, with insights drawn from our H1 2024 Crimeware Report.

    Read more
  • article

    Automotive Industry Faces Increased Cyberattacks 

    Recent ransomware attacks have severely impacted the automotive industry, disrupting car and parts availability, dealership operations, and global economies.

    Read more
  • podcast

    Unmasking Fog: Ransomware Threats in K-12 Education, Part 2

    Welcome to Bytes of Insight by Arete. Today, Harold Rodriguez from Arete's Threat Research Team dives into the education sector and FOG ransomware, sharing insights on reverse engineering malware and innovative defenses against ransomware attacks.

    Read more
  • article

    FIN7 Return Drives Increase in Cl0p Ransomware Attacks

    FIN7 resumed operations in April 2024, fueling a rise in Cl0p ransomware attacks. Their partnership poses a heightened threat, using malvertising and trojans to target victims.

    Read more
  • article

    Malware Spotlight: Fog Ransomware

    The Fog ransomware group is one of the few threat actors targeting one industry: education. This spotlight explores the group’s observed behavior, background information on the threat actor, and a technical analysis of Fog’s ransomware executable.

    Read more