Author: Glenn Holzmacher

Glenn serves as the Chief Technology Officer at Léargas Security Inc., bringing over 20 years of expertise in designing and implementing scalable business solutions. His visionary leadership is instrumental in driving the development and operations teams at Léargas to deliver a world-class security platform. Before joining Léargas, Glenn was the Director of Platform Development at Critical Path Security, where he led innovative projects that advanced the company's technical capabilities. His career also includes notable roles in practice management at ConcieHRge and as Vice President of Product Development at Sapien, where he spearheaded the development of global HR solutions for several Fortune 500 companies, including IBM, MetLife, Capital One, and Verizon Wireless.

AI-Powered Ransomware: Inside the First Reported Case, Tactics, and How to Defend

August 28, 2025 | Artificial Intelligence, General, Threat Intelligence | 6 minutes

AI-powered ransomware has moved from hypothetical to here-and-now. Public reporting by ESET and other industry outlets describes the first known case of ransomware produced with the help of a large language model (LLM), demonstrating that generative AI can compress development time and lower the skill threshold for cybercrime. While the sample analyzed was not unprecedented in capability, its existence is a watershed for defenders:

By Glenn Holzmacher

CISA AA25-239A: Countering Chinese State-Sponsored Actors Compromising Network Devices Worldwide

August 28, 2025 | Critical Infrastructure, General, IT/OT | 9 minutes

Chinese state-sponsored cyber actors are conducting long-running intrusion campaigns against telecoms and other critical networks by exploiting known vulnerabilities in edge and core network devices. As of August 28, 2025, CISA’s joint advisory AA25-239A reports widespread targeting of backbone, provider edge (PE), and customer edge (CE) routers, with persistence achieved via configuration tampering, tunneling, and credential collection; patches and detailed mitigations are available, and CISA has published STIX IOCs to aid hunting.

By Glenn Holzmacher

Author: Glenn Holzmacher

AI-Powered Ransomware: Inside the First Reported Case, Tactics, and How to Defend

CISA AA25-239A: Countering Chinese State-Sponsored Actors Compromising Network Devices Worldwide

Company

Resources

Latest News

Fortinet Authentication Bypass Vulnerabilities Exploited

Critical Dell RecoverPoint Vulnerability (CVE‑2026‑22769): Active Exploitation and Patch Guidance

AI‑Driven Threat Intelligence: OSINT, XDR Integration, and Local LLM Processing