Elastic Security Labs stories

A new Rust-based malware, EDDIESTEALER, uses fake CAPTCHA pages to trick users into running code that steals browser credentials and crypto wallets.

The recent cyber attack on Harrods highlights rising cyber threats to retailers, linked to economic pressures potentially weakening security defences.

Elastic Security Labs has unveiled SHELBY, a sophisticated malware family linked to phishing attacks against an Iraqi telecom firm, raising security alarms.

Elastic Security Labs has revealed a sophisticated campaign deploying MEDUSA ransomware via the ABYSSWORKER driver, undermining endpoint security measures.

Elastic Security Labs has unveiled GOSAR, a sophisticated new Golang-based malware family, targeting Chinese-speaking victims with advanced evasion techniques.

Elastic Security Labs has unveiled PUMAKIT, an advanced malware toolkit featuring stealthy rootkit capabilities, raising alarms in cybersecurity.

In 2025, AI will be crucial in strengthening cybersecurity as threat actors become increasingly sophisticated, driving a surge in cyber incidents.

In a significant shift, Microsoft Azure has eclipsed AWS as the leading environment for cyber threats, accounting for 64% of anomalous signals, according to Elastic's new report.

Elastic's 2024 Global Threat Report reveals that misconfigurations and offensive security tools significantly elevate cyber risks, notably in cloud environments.

Elastic Security Labs has uncovered serious security vulnerabilities in Microsoft's Smart App Control and SmartScreen, posing risks of undetected cyber attacks.

Elastic Security Labs has uncovered BITSLOTH, a sophisticated Windows backdoor leveraging BITS for covert command-and-control, found in a South American Foreign Ministry breach.

Elastic Security Labs has unveiled GrimResource, a new attack technique exploiting the Microsoft Management Console, allowing full code execution with minimal security alerts.

Elastic's new LLM Safety Assessment report offers crucial guidelines for secure Large Language Model deployments, addressing rising cybersecurity risks.

Gavin Jones, Area VP for ANZ at Elastic, the leading search analytics firm, shares insights on its strategic direction and technological advancements.

Increases in ransomware, commercial off-the-shelf malware, and attacks against cloud service providers create new challenges for cybersecurity teams.

A new report has revealed adversary success in identity theft indicates default cloud security controls are ineffective at preventing attacks.