The Godfather of Ransomware? Inside DragonForce’s Cartel Ambitions
February 03, 2026 | Mark Tsipershtein and Evgeny Ananin
Stay Informed
Sign up to receive the latest security news and trends straight to your inbox from LevelBlue.
LevelBlue SpiderLabs: SQL Injection in Orkes Conductor: CVE-2025-66387
December 18, 2025 | Tim Stamopoulos
LevelBlue SpiderLabs has discovered a vulnerability in the Orkes Conductor ...
Sha1-Hulud: The Second Coming of The New npm GitHub Worm
December 03, 2025 | Karl Sigler
Sha1-Hulud is back with a new evolution of its supply-chain attack that targets ...
Lessons from a Honeypot with US Citizens’ Data
November 13, 2024 | Radoslaw Zdonczyk and Nikita Kazymirskyi
Prior to last week’s US Presidential Election, the Trustwave SpiderLabs team ...
Why Do Criminals Love Phishing-as-a-Service Platforms?
September 23, 2024 | Rodel Mendrez
Phishing-as-a-Service (PaaS) platforms have become the go-to tool for ...
Bypassing EDR through Retrosigned Drivers and System Time Manipulation
September 13, 2024 | Zachary Reichert
The Retrosigned Driver EDR Bypass is a novel modification of a technique ...
Unveiling "sedexp": A Stealthy Linux Malware Exploiting udev Rules
August 19, 2024 | Zachary Reichert
Stroz Friedberg identified a stealthy malware, dubbed “sedexp,” utilizing Linux ...
See ya in S3!
November 14, 2020 | Mary Braden Murphy
Stroz Friedberg has unique insight on how attackers attempt to cover their ...
Into Defray
October 08, 2020 | Daniel Spicer
Stroz Friedberg provides a look into the techniques and patterns of the ...
Close, but no Ragnar
August 19, 2020 | Daniel Spicer and Partha Alwar
Stroz Friedberg Incident Response Services has observed Ragnar Locker use ...