Cybersecurity News. PHOTO: Cybercrime Magazine.

RSA Conference 2025: BreachLock On Ransomware, Malware-less Cyberattacks

This week in cybersecurity from the editors at Cybercrime Magazine

Read the full story from BreachLock

Sausalito, Calif. – May 2, 2025

Cybercrime Magazine’s Deputy Editor Amanda Glassner and VP Kyle Haglund caught up with BreachLock’s founder and CEO Seemant Sehgal at this week’s RSA Conference 2025 in San Francisco.

The next best thing to visiting the BreachLock exhibit booth is reading their super-informative blog. A recent post takes us beyond Ransomware-as-a-Service (RaaS) and helps us understand the rise of malware-less cyberattacks.

RaaS, which emerged in the early to mid 2010’s, is a cybercrime business model that allows individuals, often referred to as affiliates, to deploy ransomware attacks without possessing advanced technical skills. RaaS providers, or operators, develop and maintain the ransomware software, offering it to affiliates in exchange for a share of the ransom payments.



Cybercriminals who run RaaS platforms have shifted toward malware-less techniques with greater stealth and sophistication. These attacks often still result in extortion or data theft, but they bypass many conventional detection mechanisms by avoiding the use of files or recognizable malware signatures.

BreachLock breaks down the malware-less attack techniques and how to defend against them in its blog post. This knowledge base comes on the heels of a report from Cybersecurity Ventures that predicts ransomware damage costs will cost the world $57 billion in 2025, and grow to a staggering $275 billion by 2031.

Today, defenders must think like attackers, anticipating tactics, closing visibility gaps, and aligning tools and teams around real-time response. The future of cybersecurity belongs to those who think offensively, act preemptively, and can move as fast as their adversaries.

Read the Full Story


Cybercrime Magazine is Page ONE for Cybersecurity. Go to any of our sections to read the latest:

  • SCAM. The latest schemes, frauds, and social engineering attacks being launched on consumers globally.
  • NEWS. Breaking coverage on cyberattacks and data breaches, and the most recent privacy and security stories.
  • HACK. Another organization gets hacked every day. We tell you who, what, where, when, and why.
  • VC. Cybersecurity venture capital deal flow with the latest investment activity from various sources around the world.
  • M&A. Cybersecurity mergers and acquisitions including big tech, pure cyber, product vendors and professional services.
  • BLOG. What’s happening at Cybercrime Magazine. Plus the stories that don’t make headlines (but maybe they should).
  • PRESS. Cybersecurity industry news and press releases in real time from the editors at Business Wire.
  • PODCAST. New episodes daily on the Cybercrime Magazine Podcast feature victims, law enforcement, vendors, and cybersecurity experts.
  • RADIO. Tune into WCYB Digital Radio at Cybercrime.Radio, the first and only round-the-clock internet radio station devoted to cybersecurity.

Contact us to send story tips, feedback and suggestions, and for sponsorship opportunities and custom media productions.