Live Webinar 

24 June 2025, 4pm BST / 11am EST / 10am CST

NodeSnake Explained: How to Detect and Defend Against It 

Join our Threat Intelligence experts for an urgent briefing on the latest ransomware threats impacting the UK and US, and how to stay ahead.

Ransomware attacks are evolving at an alarming pace, with new threat actors and malware variants emerging across the UK and US. In this exclusive webinar, Quorum Cyber’s Threat Intelligence team will reveal their latest finding NodeSnake, a Remote Access Trojan (RAT) variant, a malware strain strongly linked to the Interlock ransomware group.

 

Register to join the webinar:

What you’ll learn:

These advanced threats are actively targeting British universities and local councils, marking a dangerous escalation in attacks on the public sector and higher education. We’ll also explore the latest tactics used by shared additional criminal groups such as DragonForce and Scattered Spider. From double-extortion to data exfiltration, these actors are pushing the boundaries of cybercrime, and your defences need to keep up.

  • The latest ransomware trends across the UK and US.
  • Technical insights into the NodeSnake RAT variants.
  • How Interlock ransomware is evolving and expanding its targets.
  • Actionable tactics to protect your organisation from ransomware.

The 45-minute session will include a live Q&A to get your questions answered by the experts.

Michael Forret_LinkedIn
Michael Forret
Threat Intelligence Analyst,
Quorum Cyber 

Michael is a GREM-certified malware analyst at Quorum Cyber with just under four years in cybersecurity where he has identified threats like NodeSnake and SharpRhino. Michael drives tactical threat intelligence efforts in the Threat Intelligence team.

Mark_CD_LinkediN
Mark Cunningham-Dickie
Principal Threat Consultant,
Quorum Cyber 

Mark has over 20 years of experience in the tech industry, including 10+ years working in technical roles for law enforcement and other organisations. Mark has an MSc in Advanced Security and Digital Forensics and a BSc (Hons) in Computer Science. 

Quorum Cyber's Threat Intelligence Insights

Read more from our experts

web-2

NodeSnake Malware Report

Two UK based universities were discovered to have Remote Access Trojan (RAT) in their network in 2025. Both RATs within the universities were probably placed by the same threat actor based on timings and code sharing. Our Threat Intelligence team is tracking this malware as NodeSnake. 

DOWNLOAD REPORT →
QC054_Busting-the-Myths_Whitepaper_resized

How to Defend Your Organisation Against Current Ransomware Trends

Ransomware remains a significant threat, wreaking havoc across both the public and private industry sectors globally. Criminal groups use it to encrypt their targets’ data, making it inaccessible unless a decryption key is obtained via the ransom. 

READ ARTICLE →
QC074_NodeSnake_backgrounds_2

Quorum Cyber Uncovers Two Variants of Remote Access Trojan Malware: NodeSnake

Quorum Cyber’s Threat Intelligence team has identified two new variants of a Remote Access Trojan (RAT) tracked as NodeSnake, believed to be targeting local government and higher education organisations.

READ ARTICLE →

Headquarters

Verdant, 2 Redheughs Rigg, Edinburgh, United Kingdom, EH12 9DQ

London Office

Paddington Works 8 Hermitage Street London W2 1BE

Florida Office

501 E Kennedy Blvd Tampa 33602

© 2024 Quorum Cyber