logo

Halcyon Blog

ID: cfd04d80-e7f1-52c9-b6bf-3af60f5ff75c

STIX ID: identity--cfd04d80-e7f1-52c9-b6bf-3af60f5ff75c

Feed Type: skeleton

Earliest post: 2021-12-15

Latest post: 2026-04-22

The Sublime Security blog publishes research and engineering insights on email-based cyber threats, phishing techniques, and modern detection strategies.

01/01/2020
06/04/2026
Title Date Published Describes IncidentAuthorVisible
The Ransom Is the Smallest Line Item2026-04-30TrueTrue
I Spent 20 Years at the FBI Chasing These Criminals. Here's What Needs to Change.2026-04-22TrueTrue
Manufacturing Absorbed More Ransomware Claims in March Than the Next Three Verticals Combined2026-04-21TrueTrue
Lessons from a Supply Chain Security Event: Responding Effectively2026-04-17TrueTrue
44% and Rising: What the Automotive Industry's Ransomware Problem Tells Us About Where Attacks Are Heading2026-04-15TrueTrue
Manufacturing Is the Most Targeted Sector in Ransomware. By a Wide Margin.2026-04-01TrueTrue
How One Letter Hid a Ransomware Army2026-04-01TrueTrue
Hiding in Plain Sight: How DragonForce Weaponized Legitimate Software2026-03-16TrueTrue
Iran’s Next Move: Ransomware, and the Attack You Can't Pay Your Way Out Of2026-03-12TrueTrue
Halcyon Threat Insights 005: May 2024 Ransomware Report2026-03-02TrueTrue
AsyncRAT Campaign Continues to Evade Endpoint Detection2026-03-02TrueTrue
New Qilin.B Ransomware Variant Boasts Enhanced Encryption and Defense Evasion2026-03-02TrueTrue
Attackers Know When Your Team Goes Home: February 2026 ROC STAR Report2026-03-02TrueTrue
Halcyon Threat Insights 009: September 2024 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 007: July 2024 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 001: January 20242026-03-02TrueTrue
Abusing AWS Native Services: Ransomware Encrypting S3 Buckets with SSE-C2026-03-02TrueTrue
Power Rankings: Q2-2025 Ransomware Malicious Quartile2026-03-02TrueTrue
Halcyon Identifies New Ransomware Operator Volcano Demon Serving Up LukaLocker2026-03-02TrueTrue
Scattered Spider Tactics Observed Amid Shift to US Targets2026-03-02TrueTrue
Halcyon Threat Insights 002: February 20242026-03-02TrueTrue
Iranian Use of Cybercriminal Tactics in Destructive Cyber Attacks2026-03-02TrueTrue
Halcyon Threat Insights 006: June 2024 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 020: September 2025 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 008: August 2024 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 013: February 2025 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 016: May 2025 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 018: July 2025 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 014: March 2025 Ransomware Report2026-03-02TrueTrue
Scattered Spider and Other Criminal Compromise of Outsourcing Providers Increases Victim Attacks2026-03-02TrueTrue
Babuk2 Ransomware: Extortion Attempts Based on False Claims2026-03-02TrueTrue
Halcyon Threat Insights 015: April 2025 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 019: August 2025 Ransomware Report2026-03-02TrueTrue
Beyond Black Friday: Ransomware Defenses for Holiday Retail Operations2026-03-02TrueTrue
Report: Ransomware Command-and-Control Providers Unmasked by Halcyon Researchers2026-03-02TrueTrue
Cloak Ransomware Variant Exhibits Advanced Persistence, Evasion and VHD Extraction Capabilities2026-03-02TrueTrue
Halcyon Threat Insights 012: January 2025 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 011: December 2024 Ransomware Report2026-03-02TrueTrue
Blocking BYOVD Techniques to Prevent AV/EDR/XDR Bypasses2026-03-02TrueTrue
Arcus Media Ransomware Displays Novel Process Targeting, Selective Encryption and Recovery Disruption2026-03-02TrueTrue
Halcyon Threat Insights 010: November 2024 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 004: April 2024 Ransomware Report2026-03-02TrueTrue
Halcyon Threat Insights 003: March 20242026-03-02TrueTrue
How Public Sector Organizations Protect Their Communities Without Breaking the Budget2026-02-25TrueTrue
The Silent Credential Heist2026-02-16TrueTrue
A Ransomware Reversal: Sicarii Can't Decrypt (But Halcyon Can)2026-02-10TrueTrue
Ransomware Attacks Reach Peak Levels During December 2025 Holiday Period2026-02-09TrueTrue
One Vendor, 1,000 Victims2026-01-21TrueTrue
How Halcyon Helps MSSP Partners Deliver Stronger Ransomware Defense2025-12-04TrueTrue
The Quick Guide to Ransomware Resilience2025-11-07TrueTrue

1–50 of 265

Built by the dogesec team. Copyright 2026.