사이버 위협에 대비하기 위한 인텔리전스
사이버 위협은 빠르게 진화하고 있으며 아리아카도 마찬가지입니다. 아리아카 위협 연구소는 아디트야 K. 수드 박사가 이끄는 위협 인텔리전스 및 연구를 통해 기업이 새로운 위험을 사전에 감지, 완화, 방어할 수 있도록 지원합니다.
아디아카 위협 연구소는 아디아카의 서비스형 통합 SASE 플랫폼에 고급 위협 인사이트를 제공함으로써 혁신을 주도하고 있습니다.
Contributors
Aditya K Sood
VP of Security Engineering and AI Strategy
Read Bio >
Varadharajan K
Principal Threat Research Engineer
Read Bio >
Aditya K Sood
VP of Security Engineering and AI Strategy
Aditya K Sood (Ph.D) is the VP of Security Engineering and AI Strategy at Aryaka. With more than 18 years of experience, he provides strategic leadership in information security, covering products and infrastructure. Dr. Sood is interested in Artificial Intelligence (AI), cloud security, malware automation and analysis, application security, and secure software design. He has authored several papers for various magazines and journals, including IEEE, Elsevier, Crosstalk, ISACA, Virus Bulletin, and Usenix. He has been an active speaker at industry conferences and presented at Blackhat, DEFCON, HackInTheBox, RSA, Virus Bulletin, OWASP, and many others. Dr. Sood obtained his Ph.D. in Computer Science from Michigan State University. Dr. Sood is also the author of "Targeted Cyber Attacks," “Empirical Cloud Security,” and "Combating Cyberattacks Targeting the AI Ecosystem" books. He held positions such as Senior Director of Threat Research and Security Strategy, Head (Director) of Cloud Security, Chief Architect of Cloud Threat Labs, Lead Architect and Researcher, and others while working for companies such as F5 Networks, Symantec, Blue Coat, Elastica, and KPMG.
Varadharajan K
Principal Threat Research Engineer
Varadharajan Krishnasamy is a principal threat research engineer at Aryaka Networks with over 17 years of experience in cybersecurity. His expertise includes malware analysis, reverse engineering, threat intelligence, incident response, threat hunting and tracking Advanced Persistent Threats (APT). He has worked with leading organizations such as McAfee, Wells Fargo, HCL, Cyble, and Comodo, contributing to the development of detection signatures for advanced threat protection across EDR, XDR, and antivirus platforms.
Explore our latest research below
Blog
Report
Whitepapers
News
소리 없는 스파이 활동: APT36의 지속적인 캠페인에 대한 이해
전 세계의 주요 인프라는 고도로 조직화되고 국가가 후원하는 ‘스파이 생태계’의 위협을 받고 있습니다. 느슨하게 조직되어 있지만 풍부한 자원을 보유한 이…
Read Blog
클라우드의 유령: 사기꾼들이 사기성 캠페인에 구글 클라우드 스토리지를 악용하는 사례
이 모든 것은 평범한 화요일 아침, 받은 편지함으로 들어오는 평범한 이메일 몇 통에서 시작되었습니다. 종소리도 없고, 휘파람도 없고, 언뜻 보기에…
Read Blog
BatShadow: 베트남 위협 행위자, 디지털 운영 확장
By 아디트 케이 수드 | By 바라다라잔 케이 | Sep 25, 2025 새로운 Batshadow 위협 보고서 다운로드 또는 인터랙티브 보고서…
Read Blog
Wiley의 인터넷 기술 레터, 적응형 위협 헌팅을 위한 제너레이티브 AI 연구 발표
최근 저희는 적응형 위협 헌팅 프로세스를 혁신하는 데 있어 생성(GenAI)의 중요성을 강조하는 연구 논문을 Wiley의 인터넷 기술 레터에 발표했습니다. 연구…
Read Blog
북한의 킴수키 APT: 진화하는 디지털 세상에 적응하는 은밀한 위협
By 아디트 케이 수드 | By 바라다라잔 케이 | 2025년 7월 29일 오늘날의 초연결 환경에서 보안 네트워크 경계에 대한 전통적인…
Read Blog
네트워크 강화: 아리아카의 통합 SASE가 렘코스랫과 같은 지능형 위협을 방어하는 방법
진화하는 사이버 보안 환경에서 Remcos RAT(원격 액세스 트로이목마)와 같은 위협은 점점 더 정교해져 은밀한 기술을 활용하여 네트워크에 침투하고 중요한 데이터를…
Read Blog
ACM 매거진의 커뮤니케이션에 고급 AI 보안 연구 발표
악성 AI 모델과 관련된 문제에 대한 최신 연구 결과가 “악의적인 AI 모델이 소프트웨어 공급망 보안을 약화시킨다” 라는 제목으로 ACM 매거진의…
Read Blog
렘코스 온 더 와이어: 네트워크 아티팩트 및 C2 명령 구조 분석하기
By 바라다라잔 케이 | By 비카시 대쉬 | 06월 02, 2025 개요 Remcos는 2016년 7월에 독일 회사 Breaking Security에서 처음…
Read Blog
스네이크 인포스틸러: SMTP를 통한 데이터 유출 사례 살펴보기
SMTP(단순 메일 전송 프로토콜)를 통한 데이터 유출은 공격자가 손상된 시스템에서 외부 위치로 민감한 정보나 기밀 정보를 전송할 때 사용하는 강력한…
Read Blog
아리아카 위협 연구소를 소개합니다
사이버 보안 위협은 전례 없이 빠른 속도로 진화하고 있으며, 조직은 끊임없이 위험에 노출되어 있습니다. 이러한 위협에 한발 앞서 대응하고 탁월한…
Read Blog
솔트타이푼 APT: 구조에 대한 서비스로서의 통합 SASE
개요 솔트타이푼과 같은 사건은 기업 및 사용자가 통제할 수 없는 인프라에 대한 종속성으로 인해 침해에 취약하다는 사실을 일깨워주는 좋은 예입니다.…
Read Blog
악의적인 통신을 차단하여 서비스형 통합 SASE로 공격 표면을 차단합니다.
복원력 있는 사이버 보안은 조직이 사이버 위협과 공격을 견디고, 이에 적응하고, 복구할 수 있는 능력을 강조하는 전략적 접근 방식입니다. 탄력적인…
Read Blog
ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories
A VBScript loader prepares the system and silently installs the components needed to run Python-based code. This is where the…
Read News
New CRPx0 malware campaign uses OnlyFans lure for crypto theft and ransomware
A complex and stealthy malware campaign dubbed CRPx0 is targeting MacOS and Windows systems, with potential Linux capabilities in development.…
Read News
Free OnlyFans Lure Used to Spread Cross-Platform CRPx0 Malware
CRPx0 is a complex, stealthy and persistent malware campaign. It currently targets macOS and Windows systems, and appears to have…
Read News
Russian hackers target HR departments with vicious new ‘BlackSanta’ malware
Russian hackers have been targeting Human Resources (HR) departments at various organizations around the world with a never-before seen piece…
Read News
HR departments are being targeted with fake resumes that disable security protection
A threat campaign against human resource (HR) departments has recently been launched. What seems like a decent resume actually is…
Read News
‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload
The malware disables antivirus and EDR protections at the kernel level, clearing the path for credential harvesting, system reconnaissance, and…
Read News
BlackSanta ‘EDR-killer’ malware targets HR departments
A specialized “EDR-killer” malware module known as BlackSanta has been discovered operated by a Russian-speaking threat actor that primarily targets…
Read News
BlackSanta Malware Targets HR Staff with Fake CV Downloads
Aryaka researchers have identified a new threat from a Russian-speaking group using ‘BlackSanta’ malware. By disguising attacks as job applications,…
Read News
BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign
A new malware campaign targeting human resources and recruiting staff has seen attackers distribute malicious files disguised as job applications.
Read News
HR Departments Targeted by Multi-Layered BlackSanta EDR Killer Malware
Threat actors are increasingly targeting human resources (HR) departments by disguising malware as job application documents.
Read News
BlackSanta Malware Shuts Down Protections, Targets HR and Recruiting Operations
Russian threat actors have targeted HR employees and recruiters for more than a year with a sophisticated campaign that includes…
Read News
Resumés with malicious ISO attachments are circulating, says Aryaka
HR staff need to understand that these unfamiliar files execute commands and shouldn’t be opened.
Read News
‘BlackSanta’ EDR Killer Targets HR Workflows
A campaign by Russian-speaking cyberattackers hijacks workflows to deliver security-busting malware, allowing attackers to steal data without detection.
Read News
Fake job applications pack malware that kills endpoint detection before stealing data
A Russian-speaking cyber criminal is targeting corporate HR teams with fake CVs that quietly install malware which can disable security…
Read News
New ‘BlackSanta’ EDR killer spotted targeting HR departments
For more than a year, a Russian-speaking threat actor targeted human resource (HR) departments with malware that delivers a new…
Read News
HR, recruiters targeted in year-long malware campaign
An attack campaign targeting HR departments and job recruiters has been stealthily compromising systems, Aryaka researchers have discovered.
Read News
Convergence – The Sequel (And How To Avoid Trade-Offs)
I recently published a blog, post-conversation with Albert Estevez Polo (current leader in “Broadband-Testing name of the year 2026” competition)…
Read News
Making sense of AI’s role in cyber security
Cyber security companies have jumped on the AI bandwagon. We look at where artificial intelligence is a useful add-on and…
Read News
APT36 Hacker Group Attacking Linux Systems with New Tools to Disturb Services
Indian defense sector and government-aligned organizations have been targeted by multiple campaigns that are designed to compromise Windows and Linux…
Read News
APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities
Indian defense sector and government-aligned organizations have been targeted by multiple campaigns that are designed to compromise Windows and Linux…
Read News
Report sheds light on multi-pronged APT36 attacks against India
Indian government and defense organizations have been targeted by Pakistan-linked threat group APT36, also known as Transparent Tribe, in multiple…
Read News
RATs in the Machine: Inside a Pakistan-Linked Three-Pronged Cyber Assault on India
Transparent Tribe (APT36) is targeting Indian defense and government sectors with GETA, ARES, and Desk RATs in a new wave…
Read News
APT36 Targets Linux Systems With New Tools Designed to Disrupt Services
Critical infrastructure worldwide faces mounting threats from sophisticated, state-sponsored “espionage ecosystems.”
Read News
From promise to proof: making AI security adoption tangible
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around AI and…
Read News
Unified SASE e Segurança Integrada Marcam os Desafios Reais dos CISO Portugueses
A visibilidade continua a ser um dos principais problemas dos CISO. Não por falta de ferramentas, mas pela fragmentação dos…
Read News
From trust to turbulence: Cyber’s road ahead in 2026
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year,…
Read News
Suspicious traffic could be testing CDN evasion, says expert
An individual or group is doing new probing of content delivery networks (CDNs), an effort that CSOs, CIOs and network…
Read News
New Android Warning As Humanized Password Stealer Confirmed
New Android Warning As Humanized Password Stealer Confirmed
Read News
Vampire Bot Malware Sinks Fangs Into Job Hunters
The campaign is the latest by BatShadow, one of a growing number of cybercrime groups operating out of Vietnam.
Read News
BatShade: Vietnamese threat actor expands its digital operations
Aryaka Threat Research Labs has identified a new campaign by the Vietnamese threat actor BatShade, which continues to rely on…
Read News
BatShade: Vietnamese threat actor expands its digital operations
Aryaka Threat Research Labs has identified a new campaign by the Vietnamese threat actor BatShade, which continues to rely on…
Read News
BatShadow Group Uses New Go-Based ‘Vampire Bot’ Malware to Hunt Job Seekers
A Vietnamese threat actor named BatShadow has been attributed to a new campaign that leverages social engineering tactics to deceive…
Read News
⚡ Weekly Recap: Bootkit Malware, AI-Powered Attacks, Supply Chain Breaches, Zero-Days & More
In a world where threats are persistent, the modern CISO’s real job isn’t just to secure technology—it’s to preserve institutional…
Read News
Breach Roundup: Vidar Strikes Back
Every week, ISMG rounds up cybersecurity incidents and breaches around the world. This week, the Vidar infostealer is badder than…
Read News
Vidar Infostealer Back With a Vengeance
The pervasive Vidar infostealer has evolved with a suite of new evasion techniques and covert data exfiltration methods, according to…
Read News
Adoption of Vidar infostealer on the rise, report finds
More cybercriminals have been utilizing the Vidar information stealer in attacks this year due to the malware’s low barrier of…
Read News
Vidar infostealer gains traction among cybercriminals as ease of use drives adoption
A new report released today by secure access service edge provider Aryaka Networks Inc. is warning of the growing threat…
Read News
How Evolving RATs Are Redefining Enterprise Security Threats
A more unified and behavior-aware approach to detection can significantly improve security outcomes.
Read News
Rubio Impersonator Signals Growing Security Threat From Deepfakes
An impostor who posed as the secretary of state in text and voice communications with diplomats and politicians demonstrates the…
Read News
Fortifying the future: The pivotal role of CISOs in AI operations
The Security Think Tank considers how CISOs can best plan to facilitate the secure running of AI and Gen AI-based…
Read News
French Luxury Giant Dior Confirms Data Breach after a Cyber Attack
French luxury giant Dior has confirmed a data breach after experiencing a cyber attack that resulted in unauthorized access to…
Read News
Ransomware hits Kettering Health: Experts speak out
Amajor ransomware attack has struck Kettering Health, a nonprofit network operating 14 medical centres and more than 120 outpatient facilities…
Read News
M&S hackers used employee logins from third-party consulting firm TCS, sources say
New information reveals Scattered Spider, the ransomware group responsible for the Marks & Spencer (M&S) cyberattack, allegedly gained access to…
Read News
Perfume and steel: Dior and Nucor in cyberattacks
Luxury fashion giant Dior and steel manufacturing giant Nucor both announced that the companies were dealing with cybersecurity incidents. This…
Read News
Coinbase offers USD $20 million bounty after insider data breach
Coinbase, one of the world’s largest cryptocurrency exchanges, has confirmed it suffered a significant data breach orchestrated by cybercriminals who…
Read News
Alabama cyberattack exposes state staff credentials, disrupts services
The state of Alabama is investigating a significant cybersecurity incident that has led to the disruption of certain government services…
Read News
Unspoken risk: Human factors undermine trusted platforms
A leak of information on American military operations caused a major political incident in March 2025.
Read News
What is polymorphic malware?
Polymorphic malware constantly changes its code to avoid detection, making it a top cybersecurity threat that demands advanced, behavior-based defenses
Read News
Safe AI Implementation
Red models associated with AI technologies highlight real-world vulnerabilities and the importance of proactive security measures.
Read News
Malware-free attacks: The threat to businesses
Malware-free attacks are a growing risk – what can businesses do to mitigate them?
Read News
Kidney dialysis firm DaVita hit by weekend ransomware attack
DaVita, a kidney dialysis company, has experienced a ransomware attack. The organization disclosed the incident in a filing with the…
Read News
Strategic AI readiness for cybersecurity: From hype to reality
AI readiness in cybersecurity involves more than just possessing the latest tools and technologies; it is a strategic necessity.
Read News
Fate of DNA data raises privacy, identity issues in 23andMe bankruptcy
News of the troubled DNA testing services company 23andMe filing for Chapter 11 bankruptcy protection set off a spirited debate…
Read News
23andMe Bankruptcy Sparks Urgent DNA Data Privacy Reckoning
In what could become a defining moment for consumer privacy in the digital age, 23andMe — the once high-flying genetics…
Read News
23andMe Bankruptcy Filing May Put Sensitive Data at Risk
Genetic testing company 23andMe quietly filed for bankruptcy over the weekend, and now security experts are worried about the fate…
Read News
DeepSeek AI: The Hidden Perils of Data Privacy and Security
DeepSeek AI is a cautionary tale that underscores the need for greater security, transparency and accountability in the AI ecosystem.
Read News
DeepSeek – A Deep Dive Reveals More Than One Red Flag
Like many advanced AI-driven tools, the Chinese DeepSeek AI application offers incredible innovation. Still, it raises significant data privacy concerns…
Read News
How GenAI adoption introduces network and security challenges [Q&A]
Enterprises are increasingly using GenAI to transform their organization. As they move ahead, they’re evaluating their preparedness from a business,…
Read News
Experts warn of security risks as DeepSeek limits new sign-ups
Cybersecurity experts have raised concerns over potential security risks in DeepSeek’s artificial intelligence platform after the Chinese AI startup announced…
Read News
Blog
소리 없는 스파이 활동: APT36의 지속적인 캠페인에 대한 이해
Read Blog
클라우드의 유령: 사기꾼들이 사기성 캠페인에 구글 클라우드 스토리지를 악용하는 사례
Read Blog
BatShadow: 베트남 위협 행위자, 디지털 운영 확장
Read Blog
Wiley의 인터넷 기술 레터, 적응형 위협 헌팅을 위한 제너레이티브 AI 연구 발표
Read Blog
북한의 킴수키 APT: 진화하는 디지털 세상에 적응하는 은밀한 위협
Read Blog
네트워크 강화: 아리아카의 통합 SASE가 렘코스랫과 같은 지능형 위협을 방어하는 방법
Read Blog
ACM 매거진의 커뮤니케이션에 고급 AI 보안 연구 발표
Read Blog
렘코스 온 더 와이어: 네트워크 아티팩트 및 C2 명령 구조 분석하기
Read Blog
스네이크 인포스틸러: SMTP를 통한 데이터 유출 사례 살펴보기
Read Blog
아리아카 위협 연구소를 소개합니다
Read Blog
솔트타이푼 APT: 구조에 대한 서비스로서의 통합 SASE
Read Blog
악의적인 통신을 차단하여 서비스형 통합 SASE로 공격 표면을 차단합니다.
Read Blog
Reports
Whitepapers
News
ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories
Read News
New CRPx0 malware campaign uses OnlyFans lure for crypto theft and ransomware
Read News
Free OnlyFans Lure Used to Spread Cross-Platform CRPx0 Malware
Read News
Russian hackers target HR departments with vicious new ‘BlackSanta’ malware
Read News
HR departments are being targeted with fake resumes that disable security protection
Read News
‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload
Read News
BlackSanta ‘EDR-killer’ malware targets HR departments
Read News
BlackSanta Malware Targets HR Staff with Fake CV Downloads
Read News
BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign
Read News
HR Departments Targeted by Multi-Layered BlackSanta EDR Killer Malware
Read News
BlackSanta Malware Shuts Down Protections, Targets HR and Recruiting Operations
Read News
Resumés with malicious ISO attachments are circulating, says Aryaka
Read News