Skip to the main content.

PacketWatch_Logo_Inline_Reverse

 

Threat Intelligence Research

Read our latest threat intelligence, produced by our team of battle-hardened analysts and research team.

initial access broker tactics cybersecurity network security monitoring

10 min read

How PacketWatch Network Monitoring Foiled an Initial Access Broker

On January 1, 2024, the PacketWatch team prevented a cyberattack by detecting early signs of malicious activity in a client's network. We uncovered an active, hands-on-keyboard intrusion by an Initial Access Broker (IAB) attempting to establish a...

Read More
DarkGate malware excel sheet

4 min read

Cyber Threat Intelligence Briefing - March 25, 2024

This week, we share a new tactic from DarkGate to look out for and a vulnerability roundup.

Read More
Microsoft Midnight Blizzard, Twitter X Calling Feature Privacy Risk, VMWarem JetBrains, QNAP

5 min read

Cyber Threat Intelligence Briefing - March 11, 2024

This week, we cover lessons learned from the recent Microsoft Security and Midnight Blizzard statement, X's new feature's privacy risk, and a...

Read More
connectwise screenconnect, uhc optum breach

4 min read

Cyber Threat Intelligence Briefing - February 26, 2024

This week, we continue to cover the ConnectWise ScreenConnect vulnerabilities and United Healthcare Optum Breach and include a vulnerability roundup.

Read More
ConnectWise ScreenConnect Critical RCE Vulnerability CVE

1 min read

Two ConnectWise ScreenConnect Critical RCE Vulnerabilities

ConnectWise recently released a security bulletin disclosing two new vulnerabilities in their ScreenConnect platform.

Read More
CVE-2024-21413 Microsoft Outlook Critical RCE

1 min read

CVE-2024-21413: Microsoft Outlook Critical RCE

As part of this month's Patch Tuesday, Microsoft released a fix for a critical vulnerability affecting multiple Outlook versions.

Read More
anydesk cve, Ivanti, Fortinet, JetBrains

5 min read

Cyber Threat Intelligence Briefing - February 12, 2024

Welcome back for another bi-weekly threat intelligence report from PacketWatch. This week, we cover the VexTrio traffic broker, Kasseika BYOVD, and a...

Read More
January 29 2024 cyber threat intel, vextrio, kasseika, cves

6 min read

Cyber Threat Intelligence Briefing - January 29, 2024

Welcome back for another bi-weekly threat intelligence report from PacketWatch. This week, we cover the VexTrio traffic broker, Kasseika BYOVD, and a...

Read More
CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass

1 min read

CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass

Fortra just released a security bulletin detailing a new critical authentication bypass vulnerability in their GoAnywhere Managed File Transfer (MFT)...

Read More
cyber threat intel January 15 2023 by packetwatch cybersecurity

4 min read

Cyber Threat Intelligence Briefing - January 15, 2024

Welcome back for another bi-weekly threat intelligence report from PacketWatch. This week, we cover recent Twitter/X account compromises and a...

Read More