Bitdefender Threat Debrief | December 2025
Growing RaaS Partners and Affiliates Spark Divide on Perceived Connections This edition of ...
ClickFix: A KISS from Cybercriminals
One of the biggest challenges in threat intelligence is separating the hype from the hazard. ...
Technical Advisory: React2Shell Critical Unauthenticated RCE in React (CVE-2025-55182)
TL;DR Ransomware groups are expected to rapidly weaponize this critical (CVSS 10.0) React ...
The Korean Leaks – Analyzing the Hybrid Geopolitical Campaign Targeting South Korean Financial Services With Qilin RaaS
TL;DR - The "Korean Leaks" campaign showcases a sophisticated supply chain attack against ...
Bitdefender Threat Debrief | November 2025
The ALPHV Insiders: Cyber Defenders Who Cast a Shadow on Enterprise Security This edition of ...
Curly COMrades: Evasion and Persistence via Hidden Hyper-V Virtual Machines
I'd like to thank my coauthors Adrian Schipor and Martin Zugec for their invaluable ...
Technical Advisory: Critical Unauthenticated RCE in Windows Server Update Services (WSUS) - CVE-2025-59287
TL;DR Our telemetry indicates an active exploitation campaign targeting vulnerable Windows ...
Bitdefender Threat Debrief | October 2025
LockBit Lives On with Version 5.0 and a New Partnership This edition of the Bitdefender ...
EggStreme Malware: Unpacking a New APT Framework Targeting a Philippine Military Company
I'd like to thank my coauthors, Victor Vrabie, Adrian Schipor, and Martin Zugec, for their ...
Security Risks of Agentic AI: A Model Context Protocol (MCP) Introduction
If you've spent any time around IT, you must own that dusty box of legacy cables – a tangle ...
SafePay Ransomware: How a Non-RaaS Group Executes Rapid Fire Attacks
Ransomware groups continue to evolve their tactics, but few have made as sharp an impact in ...
Bitdefender Threat Debrief | August 2025
ScatteredSpider Team Up with LAPSUS$ and ShinyHunters: More Growth, More Bragging?
