Sinobi first emerged within the #ransomware landscape in late June 2025 and significantly increased their activity the following month. Check out our #threatactor deep dive to learn about the IoCs and hashes our team has identified for Sinobi. Read more:

Today we celebrate the dedication, resilience, and contributions of working people across every industry. At @Surefire_Cyber, we’re grateful for our own team and our partners who stand with us in helping organizations respond to and recover from #cyber incidents. Happy Labor Day!

Our team is the core of our business — driving exceptional work, quality outcomes, and a first-class experience. 🚀 We’re growing our #digitalforensics and #incidentresponse team and are looking for top talent to join us. View openings: #DFIR #cyber

Audit-driven #security programs often do not properly validate and test "paper” compensating controls, leading to a false sense of security. @forgepointcap's Dr. Shane Shook shares valuable tips and includes insight from our CEO. #DFIR #incidentresponse

Our #DFIR Director, Luke Emrich, joins @ConstangyLaw partner, Matthew Toldero, for a discussion on proactive steps organizations should take to prepare their infrastructure & personnel for #ransomware attacks. Register: #cybersecurity #incidentresponse.

Through July 2025, #threatactor activity has been marked by both persistence and change. Our threat intel team breaks down July’s most active groups and notable activity. Read more: #ransomware #DFIR #cybersecurity

In July, we observed an increase in the use of Adversary-in-the-Middle (#AiTM) techniques within #BEC campaigns. This integration represents a fundamental shift in the threat landscape that renders traditional security controls insufficient. Learn more:

Third-party #vendorrisks, outdated and unpatched systems, #PHI theft, and regulatory compliance are just a few of the #cybersecurity challenges facing #healthcare organizations. Early bird registration ends tomorrow. 𝐑𝐞𝐠𝐢𝐬𝐭𝐞𝐫: @MPLassociation

Since emerging in 2023, DragonForce has rapidly expanded from #hacktivist origins to becoming a major player in financially motivated #cybercrime, with over 105 confirmed victims across multiple sectors and geographies. Read more:.#ransomware

We recently identified that Qilin #ransomware now uses double #encryption on high value data — a major tactical shift that increases incident impact while demonstrating a sophisticated understanding of enterprise infrastructure. Read more: #cybersecurity

We don’t just grow—we strengthen. Chris brings the experience, mindset & rigor that defines our work—collaborating closely, responding with urgency & standing shoulder-to-shoulder with our clients to help them through a difficult time. #cybersecurity #DFIR #IR #incidentresponse

#Ransomware #threatactors continue to target remote access vectors, with virtual private network access remaining the most common entry point — but with #MFA adoption rising, ransomware groups are adapting their tactics. Read more: #VPN #DFIR #IR

🚨 New #threatactor PEAR (Pure Extraction and Ransom) posted 18 victims—14 with data—to their leak site. Focused solely on #dataexfiltration, they position themselves as a penetration test service. Important to note during any interaction with the TA. We'll be monitoring closely.

YTD 54% of our #ransomware cases involved VPN as the RPOC. Matt Dowling on our team speaks with @NetDiligence about the biggest security gaps, how #threatactors move laterally once in a network, most effective steps to prevent these attacks & emerging technologies and strategies.

Between Q1 and Q2, there was an 18% rise in the number of #threatactors launching #ransomware campaigns against victims. Dive deeper into the threat actor behaviors our team tracked throughout the quarter. Read more: #DFIR #IR #threatintel #cybersecurity

⏱️Responsiveness day/night.🤝Critical thinking to help make timely decisions.🧠Deep experience managing cyber incidents.🧭Empathy to guide during a difficult time.🔍Transparent pricing & clear communication.💪Knowledge & skills to help you emerge stronger.

Thank you everyone for joining us today! ⚾️⚾️⚾️It was a hot one! ☀️. Thank you @DAR_GreenTeam, @EntaraCorp and @spektrumlabs for co-sponsoring!

We’re thrilled to welcome Colin to our team! With his strong foundation in #cyberinsurance, he'll play a pivotal role in effectively overseeing and driving #cybersecurity projects within @Surefire_Cyber and ensuring seamless collaboration and alignment within our teams. #DFIR

Multi-mailbox #BEC campaigns represent a significant escalation in #threatactor sophistication, with attackers targeting multiple accounts within organizations to establish persistent access through email forwarding & filtering rules. Read more: #phishing

⚙️ Create operational efficiencies.🔍 Provide greater transparency & real time resource availability.💲 Better predict response costs . 📊Deliver more accurate budgeting & faster invoicing.⏱️ Accelerate delivery of outcomes, therefore reducing BI.