PacketWatch_Logo_Inline_Reverse

 

Threat Intelligence Research

Read our latest threat intelligence, produced by our team of battle-hardened analysts and experts.

moonstone sleet apt

6 min read

Cyber Threat Intelligence Briefing - June 3, 2024

This week, we explore Black Basta ransomware gang tactics, techniques, and procedures, and a vulnerability roundup of CVEs for Google Chrome, F5 BIG-IP,...

Read More
black basta ransomware gang, google chrome vulnerabilities, cactus network monitoring

5 min read

Cyber Threat Intelligence Briefing - May 20, 2024

This week, we explore Black Basta ransomware gang tactics, techniques, and procedures, and a vulnerability roundup of CVEs for Google Chrome, F5 BIG-IP,...

Read More
cyber threat intelligence blackcat change healthcare, hpe arubaos, dropbox breach

4 min read

Cyber Threat Intelligence Briefing - May 6, 2024

This week, we explore the lessons learned from the Change Healthcare breach, recent Dropbox breach, and HPE ArubaOS critical vulnerabilities.

Read More
akira ransomware advisory, cisco, oracle, and palo alto critical vulnerabilities

5 min read

Cyber Threat Intelligence Briefing - April 22, 2024

This week, we explore the new Akira ransomware advisory and provide insights on three critical vulnerabilities.

Read More

5 min read

Why You Need to Start Threat Hunting Within Your Network

Written by Andrew Oesterheld and Todd Welfelt

Read More
CVE-2024-3400: Palo Alto Networks PAN-OS Zero-Day Under Active Exploitation

1 min read

CVE-2024-3400: Palo Alto Networks PAN-OS Zero-Day Under Active Exploitation

Palo Alto Networks released a security bulletin detailing a new critical command injection vulnerability in their PAN-OS software, tracked as...

Read More
new SSH xz backdoor and HTTP/2 CONTINUATION Flood threat intel cybersecurity

4 min read

Cyber Threat Intelligence Briefing - April 8, 2024

This week, we dive into a new SSH xz backdoor discovered in a popular Linux distribution and how to protect your organization from an HTTP/2 CONTINUATION...

Read More
initial access broker tactics cybersecurity network security monitoring

10 min read

How PacketWatch Network Monitoring Foiled an Initial Access Broker

On January 1, 2024, the PacketWatch team prevented a cyberattack by detecting early signs of malicious activity in a client's network. We uncovered an...

Read More
DarkGate malware excel sheet

4 min read

Cyber Threat Intelligence Briefing - March 25, 2024

This week, we share a new tactic from DarkGate to look out for and a vulnerability roundup.

Read More
Microsoft Midnight Blizzard, Twitter X Calling Feature Privacy Risk, VMWarem JetBrains, QNAP

5 min read

Cyber Threat Intelligence Briefing - March 11, 2024

This week, we cover lessons learned from the recent Microsoft Security and Midnight Blizzard statement, X's new feature's privacy risk, and a...

Read More