The ransomware clones of HellCat & Morpheus.
N2K logo
16 hours ago
The ransomware clones of HellCat & Morpheus.
Jim Walter, Senior Threat Researcher on SentinelLabs research team, to discuss their work on "HellCat and Morpheus | Two Brands, One Payload as Ransomware Affiliates Drop Identical Code." Over the past six months, new ransomware groups like FunkSec, Nitrogen, and Termite have emerged, while established threats such as Cl0p and LockBit 4.0 have resurfaced. Two prominent Ransomware-as-a-Service (RaaS) operations, HellCat and Morpheus, have gained traction, with research indicating that affiliates of both are using nearly identical ransomware payloads.
Research Saturday
The ransomware clones of HellCat & Morpheus.
N2K logo
16 hours ago
The ransomware clones of HellCat & Morpheus.
Jim Walter, Senior Threat Researcher on SentinelLabs research team, to discuss their work on "HellCat and Morpheus | Two Brands, One Payload as Ransomware Affiliates Drop Identical Code." Over the past six months, new ransomware groups like FunkSec, Nitrogen, and Termite have emerged, while established threats such as Cl0p and LockBit 4.0 have resurfaced. Two prominent Ransomware-as-a-Service (RaaS) operations, HellCat and Morpheus, have gained traction, with research indicating that affiliates of both are using nearly identical ransomware payloads.
Research Saturday

Cybersecurity News

Week that Was
N2K logo
16 hours ago
US senators request transparency surrounding the UK's demands for encryption backdoors.
Trump nominates Sean Plankey as new CISA director. Chinese threat actor targets Juniper routers.
CyberWire Daily
N2K logo
Mar 14, 2025
Balancing budget cuts and cybersecurity.
The White House is urging federal agencies not to lay off cybersecurity teams. Google doesn’t deny receiving a secret legal order from the UK government. Microsoft researchers identify a simple method to bypass AI safety guardrails. Scammers are impersonating the Clop ransomware gang. Cisco issues security advisories for multiple IOS XR vulnerabilities. CISA warns of multiple ICS security issues. A LockBit ransomware developer has been extradited to the U.S. GCHQ’s former director calls for stronger cybersecurity collaboration. Rick Howard and Kim Jones pass the mic for the CISO Perspectives podcast. Sniffing out Stingrays.
Daily Briefing
N2K logo
Mar 14, 2025
US senators request transparency surrounding the UK's demands for encryption backdoors.
New ransomware operator targets Fortinet vulnerabilities. Alleged LockBit developer extradited to the US.
Story
N2K logo
Mar 14, 2025
CertByte: ISC2® Systems Security Certified Practitioner (SSCP®)
On this edition of CertByte, we discuss a question from N2K’s ISC2® Systems Security Certified Practitioner (SSCP®) practice test. As your news-to-knowledge partner, N2K will advance your career while bringing you the industry news and trends that help you stay a step ahead. Through our bi-weekly episodes of CertByte on the CyberWire Daily podcast, and these companion articles, we aim to support your certification journey and fast-track your career growth in IT, cybersecurity, and project management. As your host, I or my guest will share a practice question from N2K’s suite of industry-leading content and a study tip (or study “bit” as I like to call it) to increase your confidence and readiness on exam day.
The FAIK Files
N2K logo
Mar 14, 2025
Speaking of Deception: AI Voice Scams, Creative Uses, & More
This week, we explore the creative and mischievous ways AI voices can be created and used -- everything from simple voice cloning, to character acting, the legal issues in authenticating voice recording, to the full weaponization of AI voices for scams and information warfare.
CyberWire Daily
N2K logo
Mar 13, 2025
FCC draws the line on Chinese tech threats.
The FCC looks to counter Chinese cyber threats. Turmoil at CISA. Volt Typhoon infiltrated a power utility for over 300 days. Europe takes the lead at Ukraine’s annual cyber conference. Facebook discloses a critical vulnerability in FreeType. A new Android spyware infiltrated the Google Play store. Our guest is Alvaro Alonso Ruiz, Co-Founder and CCO of Leanspace, who is discussing software in space with T-Minus Space Daily host Maria Varmazis. A UK hospital finds thousands of unwelcome guests on their network.
Caveat
N2K logo
Mar 13, 2025
US Justice Department requests Google break-up. OPM is reviewing DOGE’s access to sensitive systems.
US Justice Department requests Google break-up. OPM is reviewing DOGE’s access to sensitive systems.
Daily Briefing
N2K logo
Mar 13, 2025
Chinese threat actor targets Juniper routers. CISA issues advisory on Medusa ransomware.
Facebook warns of actively exploited FreeType vulnerability.
Threat Vector
N2K logo
Mar 13, 2025
Trailblazers in Cybersecurity: Lessons from the Women Leading the Charge
In this special Women’s History Month episode of Threat Vector, host David Moulton speaks with four trailblazing women in cybersecurity who are shaping the industry: Kristy Friedrichs, Chief Partnerships Officer; Tanya Shastri, SVP of Product Management; Sama Manchanda, Consultant at Unit 42; and Stephanie Regan, Principal Technical Architect at Unit 42. They share their journeys into cybersecurity, discuss the challenges they faced, and offer insights on leadership, innovation, and mentorship. From AI-driven security to digital forensics, these women have made a lasting impact. Tune in to hear their advice for the next generation and why cybersecurity remains one of the most exciting and dynamic fields to be in today.
Caveat
N2K logo
Mar 13, 2025
The tug-of-war over safety and free speech.
This week on Caveat, Dave and Ben welcome back N2K’s own Ethan Cook for the third installment of our newest policy deep dive segment. As a trusted expert in law, privacy, and surveillance, Ethan is joining the show regularly to provide in-depth analysis on the latest policy developments shaping the cybersecurity and legal landscape.
Story
N2K logo
Mar 13, 2025
Policy Deep Dive: Online Safety for Children
In this special policy series, the Caveat team is taking a deep dive into key topic areas that are likely to generate notable conversations and political actions throughout the next administration.
Hacking Humans
N2K logo
Mar 13, 2025
Catch me if you scam.
On Hacking Humans, this week Dave Bittner is on vacation so our two hosts Joe Carrigan, and Maria Varmazis (also host of N2K's daily space podcast, T-Minus), are sharing the latest in social engineering scams, phishing schemes, and criminal exploits that are making headlines. Our hosts start out with some follow up on chicken talk from last week. Maria shares the story of scammers impersonating police officers in England to steal cryptocurrency by exploiting leaked personal data, creating fake fraud reports, and tricking victims into revealing their seed phrases, leading to losses totaling £1 million. Joe has two stories this week, his first one is on a $21 million "Grandparent Scam" in which 25 Canadians were charged for running a scheme from Montreal call centers, posing as grandchildren in distress to deceive elderly Americans into handing over money, with 23 suspects already arrested. Joe's second story is on two people charged in a ticket scam that exploited a loophole in StubHub’s system to steal and resell over 900 tickets—mostly for Taylor Swift’s Eras Tour—netting more than $600,000 in profit before being caught by the Queens D.A.'s Cybercrime Unit. We have a special catch of the day this week, where we are joined by N2K's own Ma'ayan Plaut, who joins to discuss going out of business scams.
Load More
Gain instant access to our exclusive podcast and briefing content, the Pro Academy, live events and more by subscribing to N2K Pro.
Subscribe Now