Ransomware isn't what it used to be.
In Episode 348 of The 443 Podcast, we break down the latest shifts in ransomware and what they mean for defenders on the front lines.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Intel Chat: BlackBasta, BlueNoroff, Operation ForumTroll & Aisuru [263]
In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows.
Lab AI Ransomware Nearly Sparks Crisis
A harmless academic AI ransomware prototype caused panic, showing just how thin the line now is between lab projects and live attack.
Juice Jacking Explained: Stay Safe at Public USB Chargers
Recharging the battery of phones, tablets, or laptops in public places such as airports, stations, hotels, or cafés is quite normal and convenient. Everybody does it while traveling or working on the go. Most of these charging points rely on USB ports, which not only deliver power but also support data transfer. In recent years, cybersecurity authorities such as the FBI and the Federal Communications Commission (FCC) have warned users about a rising cyber threat known as juice jacking.
The Return of the Invisible Threat: Hidden PUA Unicode Hits GitHub repositorties
It wasn’t long ago that we uncovered compromised extensions on Open VSX. Now, a new wave of attacks is emerging, and all signs point to the same threat actor. The technique will sound familiar: hidden malicious code injected with invisible Unicode Private Use Area (PUA) characters. We first saw this trick back in March when npm packages used PUAs to conceal payloads. Then came Open VSX. Now, the attacker seems to have turned their sights on GitHub, and their methods are evolving.
Advanced Threat Hunting Demo: Brickstorm APT
Is your VMware environment secure? A sophisticated backdoor called BRICKSTORM, used by espionage actor UNC5221, could be hiding in your vCenter backups right now. Restoring from a compromised snapshot means letting the attackers right back in. But what if your backups could be your best defense? In our new 4-minute demo, we walk through the exact steps to: Proactively hunt for BRICKSTORM within your backups using YARA rules. Instantly quarantine infected snapshots to stop the threat from spreading. Identify a guaranteed 'Gold Copy' for a fast, safe, clean-room recovery.
October 2025 Ransomware Update
his week on the podcast, we have our resident ransomware expert, Ryan Estes, on to give an update on the latest in the ransomware ecosystem. We cover a few recent changes to operators, extortion techniques, and business impact from ransomware attacks in recent months.
AI Unlocks Ransomware And Deepfake Espionage
Attackers use AI to craft phishing, automate ransomware, and slip deepfakes into job interviews—breaching systems without ever touching a keyboard.
How Cybercriminals Bypass Your Defenses (And How to Stop Them)
Malware can seriously disrupt a computer's functionality. Performance issues are only the beginning, with the worst cases involving credential theft, data theft, or monetary theft. Malware is annoying, but it can also be dangerous. Simply put, you don't want malware to make its way onto your devices. That's what antivirus software is for.
Ransomware's Worst Halloween Nightmare: The BDRShield Backup
It’s a dark and stormy night in cyberspace. Ransomware monsters lurk in the shadows, ready to encrypt and extort unsuspecting businesses.