Michael Freeman
Michael Freeman is Head of Threat Intelligence at Armis. He brings more than 25 years of experience, with a background in cryptography, vulnerability research, reverse engineering and exploit writing. He has previously developed offensive and defensive capabilities for various intelligence agencies. Most recently, Michael was the Co-Founder and CTO of CTCI, which was acquired by Armis in February 2024.
Blogs by Michael Freeman
Breaking Down Medusa Ransomware
This report provides insights from Armis Labs on Medusa ransomware, incorporating insights from multiple threat intelligence sources, including FBI, CISA, and MS-ISAC advisories.
Unpacking the Black Basta Leak
This blog analyzes the Black Basta leak, including its origins, Black Basta’s history, leaked chat messages, CVEs, GitHub repositories, and how researchers can use the data.
DeepSeek and the Security Risks, Part II: When Automation Goes Wrong
Read the blog to learn why AI tools like DeepSeek can offer speed and convenience, but they can also inadvertently introduce vulnerabilities if left unchecked.
Breaking Down Salt Typhoon
Armis examines Salt Typhoon, a sophisticated Chinese state-sponsored threat actor that has targeted U.S. telecommunications providers and political communication systems.
IOControl Malware: What’s New, What’s Not?
Read the blog to learn about the re-emergence of the IOControl malware, a sophisticated Linux backdoor, initially identified as OrpraCab and QueueCat in 2023.