Cybercrime Security Research
SpyCloud Labs is a focused cybercrime research group dedicated to uncovering and analyzing the most intricate patterns from the criminal underground. We nerd out on all things breach, malware, phishing, and threat actor-related – and are hellbent on making the internet a safer place for all. This is a space for our experts to share our latest research findings as well as best practices and solutions for organizations to better their defenses.
Latest security research
Dig in with us as we analyze digital underground collections, reverse-engineer malware, and identify threat actor patterns.
A Deep Dive Into the Intricate Chinese Cybercrime Ecosystem
Learn about the TTPs China-based threat actors refer to as SDK & DPI, as well as SGKs, which house exfiltrated data about Chinese residents.
Breaking Down the MC2 Data Breach
The MC2 data breach contains extensive PII on customers and individuals who had their backgrounds screened with the service. Here’s what to know about the leak.
How Infostealers Are Bypassing New Chrome Security Feature to Steal User Session Cookies
See how cybercriminals are bypassing Google Chrome’s App-Bound Encryption feature with infostealer malware to steal session cookies that can be used in session hijacking attacks.
Webinars and videos
Tune in to hear new and interesting research insights from our experts, first-hand.
Journey to the Underground: Insights Into What’s Fueling Ransomware in 2024
This webinar breaks down the most important findings from The SpyCloud 2024 Malware and Ransomware Defense Report and what your organization can do to get ahead of emerging cyber threats.
The Illicit Chinese “Pantsless Data” Trade
Hear from SpyCloud Labs researchers how Chinese cybercriminals are accessing, exfiltrating, and trading vast amounts of PII, with international impact.
Ransomware Reality Check: The New Landscape
This webinar breaks down the most important findings from SpyCloud’s 2023 Ransomware Defense Report, and what your organization can do to get ahead of emerging cyber threats.
SpyCloud Labs in the news
Insights and research from the team making headlines.
About our mission
Watch for a quick overview of our research process and the big plans we have in store for disrupting cybercrime.
Meet the research team
Trevor Hilligoss
Wallis Romzek, PhD
Kyla Cardona
Joe Roosen
Aurora Johnson
Mike Dausin
Jakob S.
James
Yashar H.
Daniel
Paul S.
Keegan Keplinger
Andy Culler
Meet the research team
Trevor Hilligoss
Wallis Romzek, PhD
James
Kyla Cardona
Joe Roosen
Aurora Johnson
Mike Dausin
Jakob S.
Yashar H.
Daniel
Paul S.
Keegan Keplinger
Andy Culler
Meet the research team
Trevor Hilligoss
Wallis Romzek, PhD
James
Kyla Cardona
Joe Roosen
Aurora Johnson
Mike Dausin
Yashar H.
Daniel
Jakob S.
Paul S.
Keegan Keplinger
Andy Culler
Driven by SpyCloud Cybercrime Analytics
The purpose of SpyCloud Labs is to relentlessly analyze the active tactics we’re seeing among cybercriminals and look ahead in the evolution of these practices. We use Cybercrime Analytics to illuminate exposures relating to employee and customer credentials, cookies, PII, and other stolen assets so you can protect your organization.
Assets
Breaches
Malware
Families