%term

New FileFix Delivery Method Used to Distribute Interlock RAT

Jul 16, 2025 By Julian Tuin In Arctic Wolf

Since at least February 2025, Arctic Wolf has observed Interlock Remote Access Trojan (RAT) being deployed via social engineering techniques. Recently, The DFIR Report published a technical analysis of the Interlock RAT being delivered via a social engineering technique dubbed “FileFix.” The name FileFix is derived from its similarity to the previously documented ClickFix technique using fake CAPTCHA pages.

Read Post

Arctic Wolf

Read more about New FileFix Delivery Method Used to Distribute Interlock RAT

Can Your Hospital Keep Running During a Cyberattack?

Jul 16, 2025 By Rubrik In Rubrik

A cyber breach shouldn't bring critical patient care to a halt. That’s the idea behind the Minimum Viable Hospital, a model that ensures essential functions continue even under attack. Errol Weiss shares how leading healthcare systems are planning for resilience, and why smaller hospitals may struggle to keep up. He highlights how the standard response to healthcare cyberattacks overlooks the complex reality of delivering medical care. It’s time to recognize that cybersecurity isn’t just about systems, it’s about people.

View Video

Rubrik

Read more about Can Your Hospital Keep Running During a Cyberattack?

KAWA4096's Ransomware Tide: Rising Threat With Borrowed Styles

Jul 16, 2025 By Nathaniel Morales and John Basmayor In Trustwave

KAWA4096, a ransomware whose name includes "Kawa", the Japanese word for "river", first emerged in June 2025. This new threat features a leak site that follows the style of the Akira ransomware group, and a ransom note format similar to Qilin’s, likely an attempt to further enrich their visibility and credibility. In this blog post, we’ll share key insights from an analyzed KAWA4096 sample to uncover how this ransomware operates and what sets it apart.

Read Post

Trustwave

Read more about KAWA4096's Ransomware Tide: Rising Threat With Borrowed Styles

Stop Ransomware Over SMB with Falcon Endpoint Security: Demo Drill Down

Jul 15, 2025 By CrowdStrike In CrowdStrike

Ransomware is evolving—and it's targeting your blind spots. Attackers now encrypt files remotely over SMB shares using stolen credentials and unmanaged systems, bypassing traditional defenses. CrowdStrike closes this gap with File System Containment, a powerful Falcon Endpoint Security feature that detects ransomware-style behaviors like mass encryption and blocks destructive file actions instantly—directly at the endpoint, without relying on cloud checks or process termination.

View Video

CrowdStrike

Read more about Stop Ransomware Over SMB with Falcon Endpoint Security: Demo Drill Down

Cybersecurity Isn't Just About Protection Anymore

Jul 15, 2025 By Rubrik In Rubrik

The rules have changed. With cloud sprawl, BYOD, and evolving threats, your systems need more than defense, they need resilience. Learn why recovery matters just as much as prevention in today’s cybersecurity playbook.

View Video

Rubrik

Read more about Cybersecurity Isn't Just About Protection Anymore

HIPAA 2.0, Minimum Viable Hospitals, and Strategies for Cyber Resilience within Healthcare

Jul 15, 2025 By Rubrik In Rubrik

Welcome to the Data Security Decoded podcast, brought to you by Rubrik Zero Labs. In each episode, we discuss cybersecurity with thought leaders and industry experts, getting their take on trends, themes, and how they see data security evolving. This is a must-listen for security and IT leaders looking to better understand trends shaping data security and how they can achieve cyber resilience.

View Video

Rubrik

Read more about HIPAA 2.0, Minimum Viable Hospitals, and Strategies for Cyber Resilience within Healthcare

On the Move: Fast Flux in the Modern Threat Landscape

Jul 15, 2025 By João Godinho In BitSight

This report details an investigation into a Fast Flux network observed in 2024. It covers the technical details of the network, its observable infrastructure, the malware associated with it, and its presence on the dark web.

Read Post

BitSight

Read more about On the Move: Fast Flux in the Modern Threat Landscape

Pegasus Spyware Email Scam: How to Detect and Protect Yourself

Jul 15, 2025 By SafeAeon Inc. In SafeAeon

Among today's rising cyber threats, Pegasus spyware email has become one of the most famous names among the latest threats. Pegasus is a malware spy tool developed for extensive surveillance but has now been turned into the new wave of scams exerted by cybercriminals, especially through Pegasus spyware scam mails used to extort money from victims, claiming their devices had been hacked.

Read Post

SafeAeon

Read more about Pegasus Spyware Email Scam: How to Detect and Protect Yourself

A Beginner's Guide to Ransomware-as-a-Service (Raas)

Jul 14, 2025 By Jeff Darrington In Graylog

Over the last few years, news reports around ransomware attacks have noted that the attacks are increasingly sophisticated. Simultaneously, they say that the attackers are less sophisticated than in the past. While these two statements appear to conflict with each other, they are both true when viewed through the lens of the current cybercriminals business models.

Read Post

Graylog

Read more about A Beginner's Guide to Ransomware-as-a-Service (Raas)

Stop Remote Ransomware Attacks with Falcon Endpoint Security

Jul 14, 2025 By Chris Prall In CrowdStrike

Ransomware is a rapidly evolving threat, with attackers increasingly turning to remote techniques that target network shares. To help defend against these tactics, CrowdStrike Falcon Prevent endpoint security includes a capability called File System Containment, which is precision-focused to block malicious file system actions over Windows Server Message Block (SMB) shares, halting encryption as soon as possible.

Read Post