
Cybercrime Security Research
SpyCloud Labs is a focused cybercrime research group dedicated to uncovering and analyzing the most intricate patterns from the criminal underground. We nerd out on all things breach, malware, phishing, and threat actor-related – and are hellbent on making the internet a safer place for all. This is a space for our experts to share our latest research findings as well as best practices and solutions for organizations to better their defenses.
Latest security research
Dig in with us as we analyze digital underground collections, reverse-engineer malware, and identify threat actor patterns.

First of 2025: Trending Cybercrime News & Analysis
The end of 2024 and start to 2025 had no shortage of cyber security hot topics to cover. Dig into our latest findings and insights in this blog.

LummaC2 Revisited: What’s Making this Stealer Stealthier and More Lethal
Discover how LummaC2 has evolved with new stealth tactics, enhanced theft capabilities & novel evasion techniques in our latest SpyCloud Labs analysis.

Cybercrime News & Analysis to Close Out the Year
From big data leaks to cyber underground insights, SpyCloud tracked some of the top threats in 2024. Read our recap & 2025 predictions.
Webinars and videos
Tune in to hear new and interesting research insights from our experts, first-hand.

Journey to the Underground: Insights Into What’s Fueling Ransomware in 2024
This webinar breaks down the most important findings from The SpyCloud 2024 Malware and Ransomware Defense Report and what your organization can do to get ahead of emerging cyber threats.

The Illicit Chinese “Pantsless Data” Trade
Hear from SpyCloud Labs researchers how Chinese cybercriminals are accessing, exfiltrating, and trading vast amounts of PII, with international impact.

Ransomware Reality Check: The New Landscape
This webinar breaks down the most important findings from SpyCloud’s 2023 Ransomware Defense Report, and what your organization can do to get ahead of emerging cyber threats.
SpyCloud Labs in the news
Insights and research from the team making headlines.
About our mission
Watch for a quick overview of our research process and the big plans we have in store for disrupting cybercrime.
Meet the research team
Trevor Hilligoss
Wallis Romzek, PhD
Kyla Cardona
Joe Roosen
Aurora Johnson
Mike Dausin
Jakob S.
James
Yashar H.
Daniel
Paul S.
Keegan Keplinger
Andy Culler
Meet the research team
Trevor Hilligoss
Wallis Romzek, PhD
James
Kyla Cardona
Joe Roosen
Aurora Johnson
Mike Dausin
Jakob S.
Yashar H.
Daniel
Paul S.
Keegan Keplinger
Andy Culler
Meet the research team
Trevor Hilligoss
Wallis Romzek, PhD
James
Kyla Cardona
Joe Roosen
Aurora Johnson
Mike Dausin
Yashar H.
Daniel
Jakob S.
Paul S.
Keegan Keplinger
Andy Culler
Driven by SpyCloud Cybercrime Analytics
The purpose of SpyCloud Labs is to relentlessly analyze the active tactics we’re seeing among cybercriminals and look ahead in the evolution of these practices. We use Cybercrime Analytics to illuminate exposures relating to employee and customer credentials, cookies, PII, and other stolen assets so you can protect your organization.
Assets

Breaches


Malware
Families
