The Korean Leaks – Analyzing the Hybrid Geopolitical Campaign Targeting South Korean Financial Services With Qilin RaaS
TL;DR The "Korean Leaks" campaign showcases a sophisticated supply chain attack against ...
Bitdefender Threat Debrief | November 2025
The ALPHV Insiders: Cyber Defenders Who Cast a Shadow on Enterprise Security This edition of ...
Curly COMrades: Evasion and Persistence via Hidden Hyper-V Virtual Machines
I'd like to thank my coauthors Adrian Schipor and Martin Zugec for their invaluable ...
Technical Advisory: Critical Unauthenticated RCE in Windows Server Update Services (WSUS) - CVE-2025-59287
TL;DR Our telemetry indicates an active exploitation campaign targeting vulnerable Windows ...
Bitdefender Threat Debrief | October 2025
LockBit Lives On with Version 5.0 and a New Partnership This edition of the Bitdefender ...
EggStreme Malware: Unpacking a New APT Framework Targeting a Philippine Military Company
I'd like to thank my coauthors, Victor Vrabie, Adrian Schipor, and Martin Zugec, for their ...
Security Risks of Agentic AI: A Model Context Protocol (MCP) Introduction
If you've spent any time around IT, you must own that dusty box of legacy cables – a tangle ...
SafePay Ransomware: How a Non-RaaS Group Executes Rapid Fire Attacks
Ransomware groups continue to evolve their tactics, but few have made as sharp an impact in ...
Bitdefender Threat Debrief | August 2025
ScatteredSpider Team Up with LAPSUS$ and ShinyHunters: More Growth, More Bragging?
Curly COMrades: A New Threat Actor Targeting Geopolitical Hotbeds
This research from Bitdefender Labs details a cluster of malicious activity we've been ...
Technical Advisory: SonicWall Targeted by Ransomware Group
Bitdefender MDR has observed a significant increase in malicious activity targeting ...
After $500 Million in Ransom Demands, Law Enforcement Seizes BlackSuit Site
With the help of Bitdefender and more than a dozen law enforcement agencies, the U.S. ...
