SEARCH
New Malware Emerges With IcedID Links
Researchers believe that the new malware, likely created by IcedID developers, will become increasingly used by threat actors across the landscape.
Post-Disruption, LockBit’s Reputational Damage Key
Law enforcement efforts to sow distrust and hit LockBit’s brand have had arguably the biggest impact on undermining the ransomware-as-a-service model behind the group.
Carefully Crafted Campaign Led to XZ Utils Backdoor
The person or people that implanted malicious code into XZ Utils put time and effort into building trust in the open source software ecosystem.
CSRB: Microsoft Should Refocus on Security After Cloud Intrusion
The Cyber Safety Review Board cited a string of internal failures in Microsoft's security culture as contributing factors for the 2023 compromise of more than 20 customers' cloud email inboxes by a Chinese threat group.
Decipher Podcast: Dan Lorenc Returns
Dan Lorenc, co-founder and CEO of Chainguard, joins Dennis Fisher to dig into the recent XZ Utils backdoor incident, the implications for the open source ecosystem, and what can be done to avoid similar incidents in the future. Then they discuss the problems facing NIST's National Vulnerability Database and the CVE ecosystem.