ReversingLabs
@reversinglabs.com
ReversingLabs is the trusted name in file and software security.
RL - Trust Delivered.
RL - Trust Delivered.
🔖 Cloud Security Alliance released Risk Rubric, a tool that acts as an #AI leaderboard that grades LLMs from A-F across 6 risk pillars. Here's what experts are saying about it: https://bit.ly/47ZNKJ1
#AISecurity #LLMSecurity
#AISecurity #LLMSecurity
New AI security tool lays out key exposures | ReversingLabs
Risk Rubric provides assessments for LLM transparency, reliability, security and more. But it's only one tool in a comprehensive security tool box.
bit.ly
November 6, 2025 at 8:55 PM
🔖 Cloud Security Alliance released Risk Rubric, a tool that acts as an #AI leaderboard that grades LLMs from A-F across 6 risk pillars. Here's what experts are saying about it: https://bit.ly/47ZNKJ1
#AISecurity #LLMSecurity
#AISecurity #LLMSecurity
Vendors are beginning to release purpose-built tools to #dev teams that are meant to tame #VibeCoding. But do they provide comprehensive control? ➡️ https://bit.ly/47PGluO
#DevSecOps #AppSec
#DevSecOps #AppSec
Why core security controls for vibe coding are critical | ReversingLabs
Vibe coding is not going away -- and the threat is real. But are developer tools like VibeSec that shift controls left up to the job?
bit.ly
November 6, 2025 at 4:08 PM
Vendors are beginning to release purpose-built tools to #dev teams that are meant to tame #VibeCoding. But do they provide comprehensive control? ➡️ https://bit.ly/47PGluO
#DevSecOps #AppSec
#DevSecOps #AppSec
🔍 While macOS #malware is less widespread than Windows malware, the ability to identify, detect, & classify old & new threats alike is increasingly important. That's where #YARArules come into play: https://bit.ly/4nJKq9I
Evaluating YARA Rules for macOS Malware Hunting in Spectra Analyze | ReversingLabs
With a constantly evolving OSX malware domain, it is important to write clear, specific, and accurate YARA rules. Here's how.
bit.ly
November 5, 2025 at 6:09 PM
🔍 While macOS #malware is less widespread than Windows malware, the ability to identify, detect, & classify old & new threats alike is increasingly important. That's where #YARArules come into play: https://bit.ly/4nJKq9I
🎙️In the latest episode of ConversingLabs #Podcast, @bugcrowd.com founder @cje.io discusses AI's impact on vulnerability management: bit.ly/43O0vnx
November 5, 2025 at 5:10 PM
🎙️In the latest episode of ConversingLabs #Podcast, @bugcrowd.com founder @cje.io discusses AI's impact on vulnerability management: bit.ly/43O0vnx
#WeaselStore is an #infostealer used by the #APT group #DeceptiveDevelopment, which targets developers on multiple systems in web & cryptocurrency. Protect yourself by deploying our public #YARArules: https://bit.ly/3x34FdW
GitHub - reversinglabs/reversinglabs-yara-rules: ReversingLabs YARA Rules
ReversingLabs YARA Rules. Contribute to reversinglabs/reversinglabs-yara-rules development by creating an account on GitHub.
github.com
November 4, 2025 at 6:40 PM
#WeaselStore is an #infostealer used by the #APT group #DeceptiveDevelopment, which targets developers on multiple systems in web & cryptocurrency. Protect yourself by deploying our public #YARArules: https://bit.ly/3x34FdW
⚠️ RL researchers have observed an attack vector on #PowerShell known as command hijacking that enables clobbering: https://bit.ly/3X7Ct38
#OpenSource #SoftwareSupplyChainSecurity
#OpenSource #SoftwareSupplyChainSecurity
How PowerShell Gallery simplifies supply chain attacks | ReversingLabs
The automation tool's Install-Module command presents threat actors with one key link in the kill chain of a possible attack.
bit.ly
November 4, 2025 at 3:50 PM
⚠️ RL researchers have observed an attack vector on #PowerShell known as command hijacking that enables clobbering: https://bit.ly/3X7Ct38
#OpenSource #SoftwareSupplyChainSecurity
#OpenSource #SoftwareSupplyChainSecurity
EggStremeFuel is a #backdoor that is part of a file-less #malware framework used by a Chinese #APT group, which recently attacked a military company in the Philippines. Don't become a victim, deploy our public #YARArules: https://bit.ly/3x34FdW
GitHub - reversinglabs/reversinglabs-yara-rules: ReversingLabs YARA Rules
ReversingLabs YARA Rules. Contribute to reversinglabs/reversinglabs-yara-rules development by creating an account on GitHub.
bit.ly
November 3, 2025 at 5:48 PM
EggStremeFuel is a #backdoor that is part of a file-less #malware framework used by a Chinese #APT group, which recently attacked a military company in the Philippines. Don't become a victim, deploy our public #YARArules: https://bit.ly/3x34FdW
🛡️ Shout out to RL community manager @kadigrigg.bsky.social for taking part in this #cybersecurity panel at the rvatech/ #WomenInTech conference!
October 30, 2025 at 7:13 PM
🛡️ Shout out to RL community manager @kadigrigg.bsky.social for taking part in this #cybersecurity panel at the rvatech/ #WomenInTech conference!
⚠️ AI is producing code up to 4 times faster — but with 10 times more #AppSec lapses: https://bit.ly/49un2cH
#AIcoding #DevSecOps
#AIcoding #DevSecOps
AI is ramping up coding velocity -- and risk | ReversingLabs
AI is producing code up to four times faster -- but with 10 times more AppSec lapses. Here's what you need to know to keep software safe.
bit.ly
October 30, 2025 at 4:11 PM
⚠️ AI is producing code up to 4 times faster — but with 10 times more #AppSec lapses: https://bit.ly/49un2cH
#AIcoding #DevSecOps
#AIcoding #DevSecOps
RL's research team analyzed 4 #STDGroup-operated RATs, which yielded file indicators to better detect the #malware, plus 2 #YARArules: https://bit.ly/4npaWov
Tracking an evolving Discord-based RAT family | ReversingLabs
RL's research team analyzed four RATs operated by STD Group, which yielded file indicators to better detect the malware families, plus two YARA rules.
bit.ly
October 29, 2025 at 4:04 PM
RL's research team analyzed 4 #STDGroup-operated RATs, which yielded file indicators to better detect the #malware, plus 2 #YARArules: https://bit.ly/4npaWov
While new efforts on #npm such as 2FA & trusted publishing help, you need visibility into how #OpenSource packages behave — not just who is publishing: https://bit.ly/42YCNoq #DevSecOps
Will new npm security measures stop the next Shai-hulud? | ReversingLabs
While 2FA and trusted publishing will help, you need tools that give visibility into how packages behave -- not just who is publishing.
bit.ly
October 28, 2025 at 6:11 PM
While new efforts on #npm such as 2FA & trusted publishing help, you need visibility into how #OpenSource packages behave — not just who is publishing: https://bit.ly/42YCNoq #DevSecOps
📆 This Thursday, dive into the anatomy of real-world software supply chain attacks like Shai-hulud, Qix & the Salesloft/Drift compromise: https://bit.ly/47r2Wxc
#SoftwareSupplyChainSecurity #DevSecOps #AppSec
#SoftwareSupplyChainSecurity #DevSecOps #AppSec
October 27, 2025 at 7:20 PM
📆 This Thursday, dive into the anatomy of real-world software supply chain attacks like Shai-hulud, Qix & the Salesloft/Drift compromise: https://bit.ly/47r2Wxc
#SoftwareSupplyChainSecurity #DevSecOps #AppSec
#SoftwareSupplyChainSecurity #DevSecOps #AppSec
🪝 MalDocs are a common #phishing lure. Here's how RL Spectra Analyze can be used to triage this #malware & identify related samples locally: https://bit.ly/47qqkLD #Cybersecurity
How to Triage Phishing Lure MalDocs with Spectra Analyze | ReversingLabs
Spectra Analyze's network indicator analysis features yield insights that are useful in analyzing phishing lures like MalDocs. Here's how.
bit.ly
October 23, 2025 at 3:46 PM
🪝 MalDocs are a common #phishing lure. Here's how RL Spectra Analyze can be used to triage this #malware & identify related samples locally: https://bit.ly/47qqkLD #Cybersecurity
🤖 Use of AI in container workloads is growing — but security is not native. That makes additional controls essential: https://bit.ly/473tFBf
#ContainerSecurity #AppSec #AISecurity
#ContainerSecurity #AppSec #AISecurity
How to secure AI running in container workloads | ReversingLabs
Use of AI in container workloads is growing -- but security is not native. That makes additional controls essential. Here's what you need to know.
bit.ly
October 22, 2025 at 4:09 PM
🤖 Use of AI in container workloads is growing — but security is not native. That makes additional controls essential: https://bit.ly/473tFBf
#ContainerSecurity #AppSec #AISecurity
#ContainerSecurity #AppSec #AISecurity
The #SOC needs multiple vantage points when investigating #malware. Use this link to get all the new updates for RL's #MalwareAnalysis & #ThreatHunting capabilities: https://bit.ly/4ovf1ID
October 21, 2025 at 7:09 PM
The #SOC needs multiple vantage points when investigating #malware. Use this link to get all the new updates for RL's #MalwareAnalysis & #ThreatHunting capabilities: https://bit.ly/4ovf1ID
RL recently introduced significant updates to its #MalwareAnalysis & #ThreatHunting portfolio, adding new AI-driven & Kubernetes-ready capabilities. Join us this Friday to learn more: https://bit.ly/47pe4ff
October 20, 2025 at 6:59 PM
RL recently introduced significant updates to its #MalwareAnalysis & #ThreatHunting portfolio, adding new AI-driven & Kubernetes-ready capabilities. Join us this Friday to learn more: https://bit.ly/47pe4ff
⚠️ RL researchers have discovered a malicious #NuGet package that is impersonating "Netherum," a popular #Ethereum library. It has over 10M downloads, but these are most definitely artificially inflated: secure.software/nuget/packag...
October 17, 2025 at 2:36 PM
⚠️ RL researchers have discovered a malicious #NuGet package that is impersonating "Netherum," a popular #Ethereum library. It has over 10M downloads, but these are most definitely artificially inflated: secure.software/nuget/packag...
⚠️ Turns out that #MCP servers have a credentials problem, with over half of open-source implementations using credentials that rely on insecure, long-lived, static secrets: https://bit.ly/3WHbXgJ #AppSec #AISecurity
Model Context Protocol credential weakness raises red flags | ReversingLabs
More than half of MCP servers were found to rely on static, long-lived credentials. With AI agents on the rise, that's a problem.
bit.ly
October 16, 2025 at 8:52 PM
⚠️ Turns out that #MCP servers have a credentials problem, with over half of open-source implementations using credentials that rely on insecure, long-lived, static secrets: https://bit.ly/3WHbXgJ #AppSec #AISecurity
🤔 Application security posture management (#ASPM) is only as good as the technology it depends on. Learn why binary analysis & reproducible builds are key for #AppSec: https://bit.ly/3W3vw2H
Why modern AppSec tooling is key to ASPM's effectiveness | ReversingLabs
Application security posture management is only as good as the technology it depends on. Here's why software supply chain security tooling is key.
bit.ly
October 16, 2025 at 4:15 PM
🤔 Application security posture management (#ASPM) is only as good as the technology it depends on. Learn why binary analysis & reproducible builds are key for #AppSec: https://bit.ly/3W3vw2H
🔥 When it comes to #GRC, open source software (#OSS) is in the hot seat. Register for this live session, ft. #OpenSource legal experts: https://bit.ly/46QTxjD
What OSS Developers Need to Know About Compliance & Regulations | ReversingLabs
Learn how global regulations impact open source development. Join experts for practical compliance strategies every developer should know.
bit.ly
October 15, 2025 at 7:21 PM
🔥 When it comes to #GRC, open source software (#OSS) is in the hot seat. Register for this live session, ft. #OpenSource legal experts: https://bit.ly/46QTxjD
Veaty is a #backdoor used in targeted attacks against multiple Iraqi entities. It utilizes emails to communicate with its C2, & disables certificate verification. Protect yourself by deploying our public #YARArules: https://bit.ly/3x34FdW #Malware #ThreatHunting
GitHub - reversinglabs/reversinglabs-yara-rules: ReversingLabs YARA Rules
ReversingLabs YARA Rules. Contribute to reversinglabs/reversinglabs-yara-rules development by creating an account on GitHub.
bit.ly
October 15, 2025 at 5:12 PM
Veaty is a #backdoor used in targeted attacks against multiple Iraqi entities. It utilizes emails to communicate with its C2, & disables certificate verification. Protect yourself by deploying our public #YARArules: https://bit.ly/3x34FdW #Malware #ThreatHunting
🤝 When the RL ICAP Server is integrated with the Kiteworks ICAP Client, organizations achieve a highly fortified file exchange ecosystem: https://bit.ly/43hr3NC #Cybersecurity #ThreatIntel #FileSecurity
Secure Your Data Exchange with ReversingLabs & Kiteworks | ReversingLabs
Learn how the integration of the RL ICAP Server with the Kiteworks ICAP client can enhance your file security and threat detection.
bit.ly
October 15, 2025 at 4:00 PM
🤝 When the RL ICAP Server is integrated with the Kiteworks ICAP Client, organizations achieve a highly fortified file exchange ecosystem: https://bit.ly/43hr3NC #Cybersecurity #ThreatIntel #FileSecurity
#OSS supply chain attacks aren't going away anytime soon. And with fewer young people becoming maintainers, the future of #OpenSource is uncertain. Watch the newest episode of ConversingLabs #podcast, or listen wherever you get your favorite shows: https://bit.ly/3WzF8SV
ConversingLabs: Who Will Maintain Open Source’s Future? | ReversingLabs
GitHub’s Abigail Cabunoc Mayes talks about the uncertainty of open source’s future caused by a shrinking number of Gen Z maintainers.
bit.ly
October 14, 2025 at 6:46 PM
#OSS supply chain attacks aren't going away anytime soon. And with fewer young people becoming maintainers, the future of #OpenSource is uncertain. Watch the newest episode of ConversingLabs #podcast, or listen wherever you get your favorite shows: https://bit.ly/3WzF8SV
🤖 Apps made using #VibeCoding can be a minefield for #AppSec teams, especially when non-#Dev users don't understand #AIcoding security risks: https://bit.ly/4o93T4N
Vibe coding in production: 4 security lessons | ReversingLabs
Vibe-coded apps that make it to production can be a minefield for security teams. Here are key takeaways for your AppSec team.
bit.ly
October 14, 2025 at 5:07 PM
🤖 Apps made using #VibeCoding can be a minefield for #AppSec teams, especially when non-#Dev users don't understand #AIcoding security risks: https://bit.ly/4o93T4N
#BPFDoor is a #Linux #backdoor used by the Chinese #APT group #RedMenshen in targeted attacks against multiple industries. It utilizes BPF to remain undetected. Protect yourself by deploying our public #YARArules: https://bit.ly/3x34FdW
GitHub - reversinglabs/reversinglabs-yara-rules: ReversingLabs YARA Rules
ReversingLabs YARA Rules. Contribute to reversinglabs/reversinglabs-yara-rules development by creating an account on GitHub.
bit.ly
October 13, 2025 at 5:07 PM
#BPFDoor is a #Linux #backdoor used by the Chinese #APT group #RedMenshen in targeted attacks against multiple industries. It utilizes BPF to remain undetected. Protect yourself by deploying our public #YARArules: https://bit.ly/3x34FdW