Cyber threats are evolving fast — and so is Aryaka. The Aryaka Threat Research Lab, led by Aditya K. Sood, Ph.D., delivers threat intelligence and research to help businesses proactively detect, mitigate, and defend against emerging risks.
Led by Aditya K. Sood, Ph.D., the Aryaka Threat Research Lab drives innovation by feeding advanced threat insights into Aryaka’s Unified SASE as a Service platform.
VP of Security Engineering and AI Strategy
Read Bio >
Principal Threat Research Engineer
Read Bio >
Aditya K Sood
VP of Security Engineering and AI Strategy
Aditya K Sood (Ph.D) is the VP of Security Engineering and AI Strategy at Aryaka. With more than 18 years of experience, he provides strategic leadership in information security, covering products and infrastructure. Dr. Sood is interested in Artificial Intelligence (AI), cloud security, malware automation and analysis, application security, and secure software design. He has authored several papers for various magazines and journals, including IEEE, Elsevier, Crosstalk, ISACA, Virus Bulletin, and Usenix. He has been an active speaker at industry conferences and presented at Blackhat, DEFCON, HackInTheBox, RSA, Virus Bulletin, OWASP, and many others. Dr. Sood obtained his Ph.D. in Computer Science from Michigan State University. Dr. Sood is also the author of "Targeted Cyber Attacks," “Empirical Cloud Security,” and "Combating Cyberattacks Targeting the AI Ecosystem" books. He held positions such as Senior Director of Threat Research and Security Strategy, Head (Director) of Cloud Security, Chief Architect of Cloud Threat Labs, Lead Architect and Researcher, and others while working for companies such as F5 Networks, Symantec, Blue Coat, Elastica, and KPMG.
Varadharajan K
Principal Threat Research Engineer
Varadharajan Krishnasamy is a principal threat research engineer at Aryaka Networks with over 17 years of experience in cybersecurity. His expertise includes malware analysis, reverse engineering, threat intelligence, incident response, threat hunting and tracking Advanced Persistent Threats (APT). He has worked with leading organizations such as McAfee, Wells Fargo, HCL, Cyble, and Comodo, contributing to the development of detection signatures for advanced threat protection across EDR, XDR, and antivirus platforms.
Aryaka Threat Research Labs has discovered a campaign that shows how simple user actions can trigger complex, multi-stage malware execution…
Read Blog
The Resume that wasn’t a Resume It begins in one of the most trusted workflows inside any organization: hiring. An…
Read Blog
Critical infrastructure all over the world is under threat from highly organized, state-sponsored “espionage ecosystems”. These loosely knit but well-resourced…
Read Blog
It all began with a whisper—a few unassuming emails slipping into inboxes on an ordinary Tuesday morning. No bells, no…
Read Blog
By Aditya K Sood | By Varadharajan K | Sept 25, 2025 Get the new Batshadow Threat Report or Explore…
Read Blog
Vidar, a well-known info-stealing malware, is making the rounds again with a few new tricks. In a new report, Aryaka’s…
Read Blog
Recently, we published a research piece in Wiley’s Internet Technology Letters on highlighting the importance of Generative (GenAI) for revolutionizing…
Read Blog
By Aditya K Sood | By Varadharajan K | July 29, 2025 In today’s hyper-connected landscape, the traditional notion of…
Read Blog
In the evolving landscape of cybersecurity, threats like Remcos RAT (Remote Access Trojan) have become increasingly sophisticated, leveraging stealthy techniques…
Read Blog
Our latest research on the challenges associated with malicious AI models has been published in the Communications of the ACM…
Read Blog
By Varadharajan K | By Bikash Dash | Jun 02, 2025 Overview Remcos is a remote access trojan (RAT)…
Read Blog
Aryaka Threat Research Lab recently published an advanced AI research paper in the Elsevier Computer and Electrical Engineering (CAEE) journal…
Read Blog
Strela Stealer, a sophisticated information-stealing malware, is designed to exfiltrate sensitive user credentials, primarily targeting email and web browser data.…
Read Blog
Data exfiltration via Simple Mail Transfer Protocol (SMTP) is a robust method attackers use to transfer sensitive or confidential information…
Read Blog
Cybersecurity threats are evolving at an unprecedented pace, putting organizations at constant risk. To stay ahead of these threats and…
Read Blog
Overview Events like SaltTyphoon are an excellent reminder of enterprise and users’ susceptibility to breaches because of dependencies on infrastructure…
Read Blog
Resilient cybersecurity is a strategic approach that emphasizes the ability of an organization to withstand, adapt to, and recover from…
Read Blog
Targeting Indian Government and Defence
View Report
How Attackers Weaponize Google Cloud Storage to Launch Multi-Stage Fraud Campaigns
View Report
The Operational Blueprint of Kimsuky APT for Cyber Espionage
View Report
Disrupting The Attack Surface with Unified SASE as a Service by Deterring Malicious Communication
Read Whitepaper
A VBScript loader prepares the system and silently installs the components needed to run Python-based code. This is where the…
Read News
A complex and stealthy malware campaign dubbed CRPx0 is targeting MacOS and Windows systems, with potential Linux capabilities in development.…
Read News
CRPx0 is a complex, stealthy and persistent malware campaign. It currently targets macOS and Windows systems, and appears to have…
Read News
Russian hackers have been targeting Human Resources (HR) departments at various organizations around the world with a never-before seen piece…
Read News
A threat campaign against human resource (HR) departments has recently been launched. What seems like a decent resume actually is…
Read News
The malware disables antivirus and EDR protections at the kernel level, clearing the path for credential harvesting, system reconnaissance, and…
Read News
A specialized “EDR-killer” malware module known as BlackSanta has been discovered operated by a Russian-speaking threat actor that primarily targets…
Read News
Aryaka researchers have identified a new threat from a Russian-speaking group using ‘BlackSanta’ malware. By disguising attacks as job applications,…
Read News
A new malware campaign targeting human resources and recruiting staff has seen attackers distribute malicious files disguised as job applications.
Read News
Threat actors are increasingly targeting human resources (HR) departments by disguising malware as job application documents.
Read News
Russian threat actors have targeted HR employees and recruiters for more than a year with a sophisticated campaign that includes…
Read News
HR staff need to understand that these unfamiliar files execute commands and shouldn’t be opened.
Read News
A campaign by Russian-speaking cyberattackers hijacks workflows to deliver security-busting malware, allowing attackers to steal data without detection.
Read News
A Russian-speaking cyber criminal is targeting corporate HR teams with fake CVs that quietly install malware which can disable security…
Read News
For more than a year, a Russian-speaking threat actor targeted human resource (HR) departments with malware that delivers a new…
Read News
An attack campaign targeting HR departments and job recruiters has been stealthily compromising systems, Aryaka researchers have discovered.
Read News
I recently published a blog, post-conversation with Albert Estevez Polo (current leader in “Broadband-Testing name of the year 2026” competition)…
Read News
Cyber security companies have jumped on the AI bandwagon. We look at where artificial intelligence is a useful add-on and…
Read News
Indian defense sector and government-aligned organizations have been targeted by multiple campaigns that are designed to compromise Windows and Linux…
Read News
Indian defense sector and government-aligned organizations have been targeted by multiple campaigns that are designed to compromise Windows and Linux…
Read News
Indian government and defense organizations have been targeted by Pakistan-linked threat group APT36, also known as Transparent Tribe, in multiple…
Read News
Transparent Tribe (APT36) is targeting Indian defense and government sectors with GETA, ARES, and Desk RATs in a new wave…
Read News
Critical infrastructure worldwide faces mounting threats from sophisticated, state-sponsored “espionage ecosystems.”
Read News
The Security Think Tank considers what CISOs and buyers need to know to cut through the noise around AI and…
Read News
A visibilidade continua a ser um dos principais problemas dos CISO. Não por falta de ferramentas, mas pela fragmentação dos…
Read News
As we prepare to close out 2025, the Computer Weekly Security Think Tank panel looks back at the past year,…
Read News
An individual or group is doing new probing of content delivery networks (CDNs), an effort that CSOs, CIOs and network…
Read News
New Android Warning As Humanized Password Stealer Confirmed
Read News
The campaign is the latest by BatShadow, one of a growing number of cybercrime groups operating out of Vietnam.
Read News
Aryaka Threat Research Labs has identified a new campaign by the Vietnamese threat actor BatShade, which continues to rely on…
Read News
Aryaka Threat Research Labs has identified a new campaign by the Vietnamese threat actor BatShade, which continues to rely on…
Read News
A Vietnamese threat actor named BatShadow has been attributed to a new campaign that leverages social engineering tactics to deceive…
Read News
In a world where threats are persistent, the modern CISO’s real job isn’t just to secure technology—it’s to preserve institutional…
Read News
Every week, ISMG rounds up cybersecurity incidents and breaches around the world. This week, the Vidar infostealer is badder than…
Read News
The pervasive Vidar infostealer has evolved with a suite of new evasion techniques and covert data exfiltration methods, according to…
Read News
More cybercriminals have been utilizing the Vidar information stealer in attacks this year due to the malware’s low barrier of…
Read News
A new report released today by secure access service edge provider Aryaka Networks Inc. is warning of the growing threat…
Read News
A more unified and behavior-aware approach to detection can significantly improve security outcomes.
Read News
An impostor who posed as the secretary of state in text and voice communications with diplomats and politicians demonstrates the…
Read News
The Security Think Tank considers how CISOs can best plan to facilitate the secure running of AI and Gen AI-based…
Read News
French luxury giant Dior has confirmed a data breach after experiencing a cyber attack that resulted in unauthorized access to…
Read News
Amajor ransomware attack has struck Kettering Health, a nonprofit network operating 14 medical centres and more than 120 outpatient facilities…
Read News
New information reveals Scattered Spider, the ransomware group responsible for the Marks & Spencer (M&S) cyberattack, allegedly gained access to…
Read News
Luxury fashion giant Dior and steel manufacturing giant Nucor both announced that the companies were dealing with cybersecurity incidents. This…
Read News
Coinbase, one of the world’s largest cryptocurrency exchanges, has confirmed it suffered a significant data breach orchestrated by cybercriminals who…
Read News
The state of Alabama is investigating a significant cybersecurity incident that has led to the disruption of certain government services…
Read News
A leak of information on American military operations caused a major political incident in March 2025.
Read News
Polymorphic malware constantly changes its code to avoid detection, making it a top cybersecurity threat that demands advanced, behavior-based defenses
Read News
Red models associated with AI technologies highlight real-world vulnerabilities and the importance of proactive security measures.
Read News
Malware-free attacks are a growing risk – what can businesses do to mitigate them?
Read News
DaVita, a kidney dialysis company, has experienced a ransomware attack. The organization disclosed the incident in a filing with the…
Read News
AI readiness in cybersecurity involves more than just possessing the latest tools and technologies; it is a strategic necessity.
Read News
News of the troubled DNA testing services company 23andMe filing for Chapter 11 bankruptcy protection set off a spirited debate…
Read News
In what could become a defining moment for consumer privacy in the digital age, 23andMe — the once high-flying genetics…
Read News
Genetic testing company 23andMe quietly filed for bankruptcy over the weekend, and now security experts are worried about the fate…
Read News
DeepSeek AI is a cautionary tale that underscores the need for greater security, transparency and accountability in the AI ecosystem.
Read News
Like many advanced AI-driven tools, the Chinese DeepSeek AI application offers incredible innovation. Still, it raises significant data privacy concerns…
Read News
Enterprises are increasingly using GenAI to transform their organization. As they move ahead, they’re evaluating their preparedness from a business,…
Read News
Cybersecurity experts have raised concerns over potential security risks in DeepSeek’s artificial intelligence platform after the Chinese AI startup announced…
Read News
Targeting Indian Government and Defence
View Report
How Attackers Weaponize Google Cloud Storage to Launch Multi-Stage Fraud Campaigns
View Report
The Operational Blueprint of Kimsuky APT for Cyber Espionage
View Report
Disrupting The Attack Surface with Unified SASE as a Service by Deterring Malicious Communication
Read Whitepaper