SpyCloud Labs
Photo Gallery
 |
 |
SpyCloud Labs
Additional Info
| Job title of nominated professional (or team name) | SpyCloud Labs |
| Company (where nominated professional or team is working) | SpyCloud |
| Website | https://spycloud.com/ |
| Company size (employees) | 100 to 499 |
| Country | United States |
| Headquarters Region | North America |
Overview
The SpyCloud Labs team is a world-class group of cybercrime experts dedicated to safeguarding digital identities and combating advanced threats like account takeovers, ransomware, and fraud. As the specialized research division of SpyCloud, the team plays a critical role in building and maintaining SpyCloud’s industry-leading darknet data repository—the world’s largest, with over 725 billion recaptured assets from 48,000+ breaches, malware infections, phishing attacks, and underground forums.
SpyCloud Labs draws from years of expertise in cyber threat intelligence, forensics, and darknet monitoring to deliver proactive, actionable insights that help organizations detect and neutralize threats before they escalate. The team actively tracks malware families and identifies exposures from hard-to-access areas of the darknet, such as private criminal forums and marketplaces, ensuring unparalleled visibility into emerging risks.
Led by Senior VP Trevor Hilligross—formerly of the FBI and Department of Defense—SpyCloud Labs goes beyond data collection, performing in-depth cybercrime research and publishing insights to shed light on evolving threats. Using advanced tools like SpyCloud IDLink, the team automates identity correlation, uncovering hidden relationships across fragmented data to identify exposed accounts and threat actors with unmatched precision.
SpyCloud is committed to supporting victim organizations by responsibly disclosing non-public breached data to help minimize the impact of data breaches and malware infections. As part of this commitment, the SpyCloud Labs team works closely with victimized organizations to provide access to the stolen data so they can remediate any potential issues.
In addition, the team provides custom investigative support for enterprises and global law enforcement agencies to disrupt cybercriminal operations.
SpyCloud Labs’ relentless pursuit of innovation and their deep insights into the criminal underground sets them apart from competitors. Their efforts empower businesses and individuals to stay ahead of cybercriminals, securing sensitive data and fortifying digital ecosystems against breaches, malware, fraud, and ransomware.
Accomplishments
Unparalleled Expertise: SpyCloud Labs has unparalleled expertise in malware and ransomware analysis, cybercrime enablement services, and other online criminal tactics and trends. The team includes individuals with extensive research and law enforcement experience, like Department of Defense,FBI, CISA and involvement in the Joint Ransomware Task Force. These individuals combine technical prowess with a vast reservoir of cybersecurity experience to provide SpyCloud’s customers with real-time valuable insights to help them proactively turn the tables against cybercriminals.
In-depth Investigations and Research: SpyCloud Labs works closely with law enforcement and enterprise clients to disrupt cybercriminal operations and secure digital ecosystems around the world. The team also routinely publishes actionable analysis and best practices that empower organizations of all sizes to mitigate risks and strengthen their security posture.
In 2024, SpyCloud Labs exposed a shocking trend within China’s surveillance state, revealing that insiders were illegally selling citizens’ personal data—a revelation that garnered widespread coverage in Wired, The Register, and other major outlets. Additionally, the team was first to uncover that cybercriminals had begun using Meta’s Threads as an open marketplace for selling stolen credit card information—a tactic traditionally confined to Telegram and private darknet forums.
Unmatched Access to Criminal Underground Intelligence: SpyCloud Labs specializes in deep insights into pervasive infostealers such as Lumma C2, Redline Stealer, Vidar and more, containing over 725 billion assets from 48,000+ breaches, malware infections, phishing attacks, and illicit underground forums. Unlike competitors, the team continuously monitors hard-to-reach areas of the darknet, including private criminal forums and illicit marketplaces, to identify stolen credentials, authentication cookies, and other high-risk data before they can be exploited. These extensive insights provide enterprises, cyber threat intelligence teams, and security teams with a proactive advantage to disrupt cyber threats before they escalate.
-
Vote for this Nomination
(click the thumbs-up icon to cast your vote)
(40 votes)
Loading...