![Research Briefing 5.23.23](/images/social-media/research-briefing/2023/Research-23-052323.jpg)
BlackCat ransomware group uses signed kernel driver to evade detection. AhRat exfiltrates files and records audio on Android devices. ChatGPT-themed fleeceware.
BlackCat ransomware group uses signed kernel driver to evade detection. AhRat exfiltrates files and records audio on Android devices. ChatGPT-themed fleeceware. Trends and threats in API protection.Lemon Group's pre-infected devices. An update on RedStinger (a.k.a. CloudWizard). Python Package Index temporarily suspended new user and new project registration due to a spike in malicious activity. UNC3944 uses SIM swapping to gain access to Azure admin accounts. CISA adds three Apple vulnerabilities to its Known Exploited Vulnerabilities Catalog.