{"id":7449,"date":"2026-05-07T09:06:10","date_gmt":"2026-05-07T08:06:10","guid":{"rendered":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/resurssit\/w-labs\/"},"modified":"2026-05-20T13:36:00","modified_gmt":"2026-05-20T12:36:00","slug":"w-labs","status":"publish","type":"page","link":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/","title":{"rendered":"W\/Labs"},"content":{"rendered":"<section\n    class=\"wp-block-one-column-block edwp-block js-wp-block-one-column-block wp-block-one-column-block--content-1 layout--spacing-xxxxl-top layout--spacing-xl-bottom\"\n    >\n    <div class=\"wp-block-one-column-block__container\">\n                                                                                                                            <div class=\"wp-component-content wp-component-content--default wp-block-one-column-block__content fade-in\">\n            <h1 class=\"wp-component-heading text--h2 wp-component-content__title\">\n    WithSecure <span class=\"blue-text\">Labs<\/span><\/h1>                    <div class=\"wp-component-content__inner\">\n                                    <div class=\"wp-component-content__content wysiwyg\">\n                        <div class=\"wp-component-paragraph \">\n    <p class=\"text--p-medium\">Asiantuntijoidemme uusimmat tutkimukset, p\u00e4ivitykset ja ty\u00f6kalut k\u00e4ytt\u00f6\u00f6si.<\/p>\n<\/div>\n                    <\/div>\n                                                            <\/div>\n                <\/div>                                                                                <\/div>\n<\/section>\n\n\n<section\n    class=\"wp-block-archive edwp-block layout--none-top layout--spacing-xxxl-bottom\"\n    >\n    <div class=\"wp-block-archive__container\">\n        <div class=\"posts-wrapper js-posts-wrapper\">\n    <form class=\"filters js-filters-form\" role=\"search\"><input type=\"hidden\" name=\"currentPage\" value=\"1\"><button type=\"button\" aria-label=\"Filters\" class=\"filters__mobile-panel-opener js-open-panel\">\n    Filters<\/button>\n<div class=\"filters__mobile-panel js-mobile-panel\">\n    <div class=\"filters__mobile-panel-header\">\n                    <span>Filters<\/span>\n                <button\n            type=\"button\"\n            aria-label=\"Close Filters\"\n            class=\"filters__mobile-panel-close js-close-panel\"\n        >\n            Close Filters        <\/button>\n    <\/div>\n    <div class=\"filters__mobile-panel-inner\">\n        <div class=\"filters__field filters__field--select filters__field--fancy-select\">    <label\n        for=\"mobile-content_type\"\n        class=\"filters__field__label\"\n                    >\n        Sis\u00e4lt\u00f6tyyppi    <\/label>\n<select\n    name=\"mobile-content_type\"\n    id=\"mobile-content_type\"\n    class=\"filters__field__select js-select-mobile-filter\"\n>\n            <option value selected>\n            Kaikki        <\/option>\n                <option\n            value=\"370\"\n                    >\n            Article        <\/option>\n            <option\n            value=\"305\"\n                    >\n            Blog post        <\/option>\n            <option\n            value=\"346\"\n                    >\n            Reports        <\/option>\n            <option\n            value=\"327\"\n                    >\n            Research        <\/option>\n            <option\n            value=\"318\"\n                    >\n            Uncategorised        <\/option>\n            <option\n            value=\"374\"\n                    >\n            Whitepaper        <\/option>\n    <\/select>\n<\/div><div class=\"filters__field filters__field--select filters__field--fancy-select\">    <label\n        for=\"mobile-category\"\n        class=\"filters__field__label\"\n                    >\n        Aihe    <\/label>\n<select\n    name=\"mobile-category\"\n    id=\"mobile-category\"\n    class=\"filters__field__select js-select-mobile-filter\"\n>\n            <option value selected>\n            Kaikki        <\/option>\n                <option\n            value=\"324\"\n                    >\n            AI security        <\/option>\n            <option\n            value=\"360\"\n                    >\n            Application Security        <\/option>\n            <option\n            value=\"310\"\n                    >\n            Attack Detection        <\/option>\n            <option\n            value=\"384\"\n                    >\n            Cloud Security        <\/option>\n            <option\n            value=\"368\"\n                    >\n            Data Protection        <\/option>\n            <option\n            value=\"338\"\n                    >\n            Dfir        <\/option>\n            <option\n            value=\"356\"\n                    >\n            Email Security        <\/option>\n            <option\n            value=\"330\"\n                    >\n            Endpoint Security        <\/option>\n            <option\n            value=\"352\"\n                    >\n            Identity security        <\/option>\n            <option\n            value=\"364\"\n                    >\n            Managed Security        <\/option>\n            <option\n            value=\"344\"\n                    >\n            Network Security        <\/option>\n            <option\n            value=\"380\"\n                    >\n            Offensive security        <\/option>\n            <option\n            value=\"215\"\n                    >\n            Ransomware        <\/option>\n            <option\n            value=\"339\"\n                    >\n            Server Security        <\/option>\n            <option\n            value=\"311\"\n                    >\n            Software Protection        <\/option>\n            <option\n            value=\"312\"\n                    >\n            Threat intelligence        <\/option>\n    <\/select>\n<\/div><div class=\"filters__field filters__field--input\"><label class=\"filters__field__label\" for=\"mobile-search\">\n    Etsi<\/label>\n<input\n    type=\"text\"\n    name=\"mobile-search\"\n    id=\"mobile-search\"\n    class=\"filters__field__input js-input-mobile-filter\"\n    value=\"\"\n    placeholder=\"Etsi\"\n\/>\n<\/div><div class=\"filters__field filters__field--select filters__field--small-select\">    <label\n        for=\"mobile-sort\"\n        class=\"filters__field__label\"\n                        aria-label=\"Lajittelu\"\n            >\n        Lajittelu    <\/label>\n<select\n    name=\"mobile-sort\"\n    id=\"mobile-sort\"\n    class=\"filters__field__select js-select-mobile-filter\"\n>\n            <option value selected>\n            Lajittelu        <\/option>\n                <option\n            value=\"desc\"\n                    >\n            Uusimmasta vanhimpaan        <\/option>\n            <option\n            value=\"asc\"\n                    >\n            Vanhimmasta uusimpaan        <\/option>\n    <\/select>\n<\/div>    <\/div>\n<\/div>\n<div class=\"filters__field filters__field--select filters__field--fancy-select filters__field--hide-mobile\">    <label\n        for=\"content_type\"\n        class=\"filters__field__label\"\n                    >\n        Sis\u00e4lt\u00f6tyyppi    <\/label>\n<select\n    name=\"content_type\"\n    id=\"content_type\"\n    class=\"filters__field__select js-select-filter\"\n>\n            <option value selected>\n            Kaikki        <\/option>\n                <option\n            value=\"370\"\n                    >\n            Article        <\/option>\n            <option\n            value=\"305\"\n                    >\n            Blog post        <\/option>\n            <option\n            value=\"346\"\n                    >\n            Reports        <\/option>\n            <option\n            value=\"327\"\n                    >\n            Research        <\/option>\n            <option\n            value=\"318\"\n                    >\n            Uncategorised        <\/option>\n            <option\n            value=\"374\"\n                    >\n            Whitepaper        <\/option>\n    <\/select>\n<\/div><div class=\"filters__field filters__field--select filters__field--fancy-select filters__field--hide-mobile\">    <label\n        for=\"category\"\n        class=\"filters__field__label\"\n                    >\n        Aihe    <\/label>\n<select\n    name=\"category\"\n    id=\"category\"\n    class=\"filters__field__select js-select-filter\"\n>\n            <option value selected>\n            Kaikki        <\/option>\n                <option\n            value=\"324\"\n                    >\n            AI security        <\/option>\n            <option\n            value=\"360\"\n                    >\n            Application Security        <\/option>\n            <option\n            value=\"310\"\n                    >\n            Attack Detection        <\/option>\n            <option\n            value=\"384\"\n                    >\n            Cloud Security        <\/option>\n            <option\n            value=\"368\"\n                    >\n            Data Protection        <\/option>\n            <option\n            value=\"338\"\n                    >\n            Dfir        <\/option>\n            <option\n            value=\"356\"\n                    >\n            Email Security        <\/option>\n            <option\n            value=\"330\"\n                    >\n            Endpoint Security        <\/option>\n            <option\n            value=\"352\"\n                    >\n            Identity security        <\/option>\n            <option\n            value=\"364\"\n                    >\n            Managed Security        <\/option>\n            <option\n            value=\"344\"\n                    >\n            Network Security        <\/option>\n            <option\n            value=\"380\"\n                    >\n            Offensive security        <\/option>\n            <option\n            value=\"215\"\n                    >\n            Ransomware        <\/option>\n            <option\n            value=\"339\"\n                    >\n            Server Security        <\/option>\n            <option\n            value=\"311\"\n                    >\n            Software Protection        <\/option>\n            <option\n            value=\"312\"\n                    >\n            Threat intelligence        <\/option>\n    <\/select>\n<\/div><div class=\"filters__field filters__field--input filters__field--hide-mobile\"><label class=\"filters__field__label\" for=\"search\">\n    Etsi<\/label>\n<input\n    type=\"text\"\n    name=\"search\"\n    id=\"search\"\n    class=\"filters__field__input js-input-filter\"\n    value=\"\"\n    placeholder=\"Etsi\"\n\/>\n<\/div><div class=\"filters__field filters__field--select filters__field--small-select filters__field--hide-mobile\">    <label\n        for=\"sort\"\n        class=\"filters__field__label\"\n                        aria-label=\"Lajittelu\"\n            >\n        Lajittelu    <\/label>\n<select\n    name=\"sort\"\n    id=\"sort\"\n    class=\"filters__field__select js-select-filter\"\n>\n            <option value selected>\n            Lajittelu        <\/option>\n                <option\n            value=\"desc\"\n                    >\n            Uusimmasta vanhimpaan        <\/option>\n            <option\n            value=\"asc\"\n                    >\n            Vanhimmasta uusimpaan        <\/option>\n    <\/select>\n<\/div><\/form>    <div class=\"posts-wrapper__cards-wrapper\">\n                <div\n            class=\"posts-wrapper__cards js-posts-wrapper-cards row-load\"\n            id=\"posts-wrapper\"\n            data-postTypes=\"lab_item\"\n                                                data-initial-load=\"1\"\n                                >\n            <div class=\"wp-component-card-insight js-card-link wp-component-card-insight--highlighted\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Attack Detection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Software Protection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">DarkGate Rises: New version of DarkGate malware hunts like a Duck but bites like a RAT<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">On 4th August 2023, WithSecure Detection and Response Team (DRT) received an alert regarding spoofed process injection with abnormal memory characteristics on a host belonging to a WithSecure Countercept MDR customer.<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary btn--dark wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/darkgate-rises\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Attack Detection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Software Protection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">Reverse engineering a Lumma infection<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">Lumma is an information stealer that the WithSecure Detection and Response Team (DRT) have encountered several times. It has seen wider use over the past couple of years, and makes for an interesting threat to monitor.<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/reverse-engineering-a-lumma-infection\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">AI security<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Attack Detection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Software Protection<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">Machine learning-driven malware analysis<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">With the rapid emergence of new malware variants, accurately classifying and attributing malware samples has become more challenging than ever<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/machine-learning-driven-malware-analysis\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Attack Detection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Software Protection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">DarkGate malware campaign<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">Vietnamese cybercrime groups are using multiple different Malware as a Service (MaaS) infostealers and Remote Access Trojans (RATs) to target the digital marketing sector.<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/darkgate-malware-campaign\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Endpoint Security<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">The &#8217;vice&#8217; in tech advice: ClickFix-style commands disguised as tech tips across social media platforms and beyond<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">Threat actors constantly look for ways to circumvent traditional security measures to deliver malware to unsuspecting users.<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/clickfix-social-media\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Dfir<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Server Security<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">Ivanti EPMM Exploitation: Hit-and-Run<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">This blogpost, written by WithSecure\u2019s STINGR Group, presents the analysis of a security incident that happened in February 2026 and was investigated by the WithSecure Incident Response team.<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/ivanti-epmm-exploitation\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Network Security<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Ransomware<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">The Changing Economics of Cybercrime-as-a-Service: What Defenders Need to Know<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">Back in 2023, when we last wrote about Cybercrime-as-a-Service, we described cybercrime as an economy that had figured out how to scale<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/changing-economics-of-cybercrime-as-a-service\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Attack Detection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">To the past and beyond: Andariel\u2019s latest arsenal and cyberattacks<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">WithSecure proactively identified and notified a European customer belonging to the public\/legal sector of a breach attributed with high confidence to the Andariel group, a state-sponsored cyber group linked to the Reconnaissance General Bureau (RGB) 3rd bureau of Democratic People\u2019s Republic of Korea (DPRK).<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/andariel-2025\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Ransomware<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Software Protection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">TangleCrypt: a sophisticated but buggy malware packer<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">WithSecure&#039;s STINGR Group is releasing a detailed technical analysis of TangleCrypt, a previously undocumented packer for Windows malware.<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/tanglecrypt\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Attack Detection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Network Security<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">WEBJACK: Evolving IIS Hijacking Campaign Abuses SEO for Fraud and Monetization<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">WithSecure\u2019s STINGR has been investigating a malware campaign, tracked as WEBJACK, which compromises Microsoft IIS servers<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/webjack\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Identity security<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Software Protection<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">TamperedChef: Malvertising to Credential Theft<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">TamperedChef is a sophisticated malware campaign that leveraged a convincing advertising campaign strategy and a fully functional decoy application to target European organizations.<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/tamperedchef\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div><div class=\"wp-component-card-insight js-card-link\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder.jpg.webp 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-300x214.jpg.webp 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-447x318.jpg.webp 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/smush-webp\/2026\/05\/placeholder-205x146.jpg.webp 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">W\/Labs<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                    <div class=\"wp-component-card-insight__meta\">\n                <div class=\"wp-component-card-insight__categories\">\n                                            <span class=\"wp-component-card-insight__category\">Email Security<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Ransomware<\/span>\n                                            <span class=\"wp-component-card-insight__category\">Threat intelligence<\/span>\n                                    <\/div>\n            <\/div>\n                            <h3 class=\"wp-component-card-insight__title\">Email-Delivered RMM: Abusing PDFs for Silent Initial Access<\/h3>\n                                            <p class=\"wp-component-card-insight__desc\">Since November 2024, WithSecure has been tracking a slight uptick of targeted activities leveraging Remote Monitoring and Management (RMM) tools embedded within PDF documents.<\/p>\n                            <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/email-delivered-rmm\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div>        <\/div>\n        <div class=\"posts-wrapper__no-results js-posts-wrapper-no-results posts-wrapper__no-results--hide\">\n    <h2 class=\"posts-wrapper__no-results__title\">Results not found<\/h2>\n    <p class=\"posts-wrapper__no-results__description\">Results not found<\/p>\n<\/div>\n<div class=\"posts-wrapper__pagination-wrapper\">\n    <div\n        class=\"posts-wrapper__pagination js-pagination\"\n        data-total-pages=\"6\"\n        data-current-page=\"1\"\n    >\n    <\/div>\n<\/div>    <\/div>\n<\/div>\n    <\/div>\n<\/section>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":3,"featured_media":0,"parent":7439,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-7449","page","type-page","status-publish","hentry"],"acf":[],"card":"<div class=\"wp-component-card-insight js-card-link wp-component-card-insight--highlighted\">\n    <div class=\"wp-component-card-insight__image-wrapper\">\n        <img width=\"618\" height=\"440\" src=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/uploads\/2026\/05\/placeholder.jpg\" class=\"wp-component-card-insight__image\" alt=\"\" decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/uploads\/2026\/05\/placeholder.jpg 618w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/uploads\/2026\/05\/placeholder-300x214.jpg 300w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/uploads\/2026\/05\/placeholder-447x318.jpg 447w, https:\/\/withsecure.vps.staging.elixirrdigital.com\/wp-content\/uploads\/2026\/05\/placeholder-205x146.jpg 205w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/>                    <p class=\"wp-component-card-insight__content-type\">Sivu<\/p>\n            <\/div>\n    <div class=\"wp-component-card-insight__content\">\n                            <h3 class=\"wp-component-card-insight__title\">W\/Labs<\/h3>\n                                                    <div class=\"wp-component-card-insight__button-wrapper\">\n                <a class=\"wp-component-button btn btn--primary btn--dark wp-component-card-insight__button btn--small\" href=\"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/resurssit\/w-labs\/\">Lue lis\u00e4\u00e4<\/a>            <\/div>\n            <\/div>\n<\/div>","_links":{"self":[{"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/pages\/7449","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/comments?post=7449"}],"version-history":[{"count":4,"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/pages\/7449\/revisions"}],"predecessor-version":[{"id":8728,"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/pages\/7449\/revisions\/8728"}],"up":[{"embeddable":true,"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/pages\/7439"}],"wp:attachment":[{"href":"https:\/\/withsecure.vps.staging.elixirrdigital.com\/fi\/wp-json\/wp\/v2\/media?parent=7449"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}