Malware vs Virus: What's the Difference?
Malware and viruses are often used interchangeably, but they’re not the same! Watch this short video to learn the key differences between the two, how they work and how to protect yourself from them.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Ep 9: The New Frontline
Colonial Pipeline was a warning shot. Now, Chinese hackers are inside the digital guts of hundreds of Colonial equivalents across the U.S.—power, water, transportation, and more. The question isn’t if they’re in. It’s why. And what happens next. Is this digital coercion? A warning to stay out of Taiwan? Is an invasion imminent—and are we ready for the cyber fallout that could come with it?
What is DATA SPRAWL? The Hidden Threat to Your Business
Is your sensitive data secretly spreading everywhere? Data sprawl happens when harmless files evolve into sensitive information that spreads uncontrollably across platforms and people. Without visibility, you can't protect what you can't see. Learn how to stop the sprawl before it's too late!
Lights Out! A Malware Perspective on the Iberian Power Failure
Around 10:33 UTC, on April 28, 2025, Portugal, Spain, and some regions in the south of France were hit by a nationwide power outage. It impacted business, public transport, healthcare, and the daily lives of millions.
How To Mitigate the Risk of Ransomware Attacks
Ransomware attacks can damage businesses by locking them out of sensitive data. Watch this short video to learn 10 best practices to mitigate ransomware attacks in your organization.
CTI Roundup: Hazy Hawk, Remcos RAT, and npm Phishing
Hazy Hawk uses DNS records to target domains, a new malware campaign delivers fileless Remcos RAT, and threat actors combine AES encryption and malicious npm packages in a novel phishing attack.
PureHVNC RAT Using Fake High-level Job Offers from Fashion and Beauty Brands
In recent months, the Netskope Threat Labs team has observed several different campaigns delivering the PureHVNC RAT and its plugins. In 2024, the same malware was observed being delivered via a Python chain, and a few days ago, it was also observed using genAI sites to lure victims. In this blog post, we’ll describe an infection chain using different methods to lure the victim and successfully deliver the PureHVNC RAT.
What Is a Remote Access Trojan (RAT), and Why Should You Care?
According to our 2025 State of the Underground report—in which we take a look back at cybercrime on the deep and dark web from the past year—384 unique varieties of malware were sold in 2024, an increase from 349 in 2023. To determine this number, our research team examined malware and hacking tools for sale on the top three criminal forums, and as a result, we found that Remote Access Trojans (RATs) were the second most common form of malware in 2024, just behind stealer malware.
PhaaS the Secrets: The Hidden Ties Between Tycoon2FA and Dadsec's Operations
Since September 2023, Trustwave’s Threat Intelligence Team has been tracking a large-scale phishing campaign distributed via email, attributed to "Storm-1575". Storm-1575 is known for developing and distributing a PhaaS platform with adversary-in-the-middle (AiTM) capabilities, known as "Dadsec". The team’s recent investigations have revealed that the infrastructure used by Dadsec is also connected to a new campaign leveraging the "Tycoon2FA" Phishing-as-a-Service (PhaaS) platform.
What Is Extortionware? Going Beyond Ransomware
Extortionware involves stealing sensitive data from an organization and threatening to leak it. It’s become a core tactic in the modern ransomware playbook, and if your business holds valuable or confidential information, it’s a threat you can’t afford to ignore. Today, we’re taking a closer look at what extortionware is, how it works, and why it’s become one of the most difficult cyber threats to defend against.