Threat Intelligence Research

1 min read

CISA Adds Additional VMware Security Flaw to Known Exploited Vulnerabilities Catalog

CVE-2021-39144 – VMware Cloud Foundation XStream Remote Code Execution Vulnerability The Cybersecurity and Infrastructure Security Agency (CISA) has added...

2 min read

Robbinhood Ransomware Gang Still Operational

Robbinhood History One of the most notorious ransomware gangs from 2019 and 2020 is known as Robbinhood (with 2 B’s). They made a name for themselves by...

2 min read

Lessons Learned from #ContiLeaks

ContiLeaks Background

3 min read

Preparing for Cyber Threats Related to Tensions in Ukraine

Summary

1 min read

CVE-2022-21907: New Wormable Vulnerability in Microsoft Windows

Included in the latest “Patch Tuesday” from Microsoft on January 11, 2022, is a fix for CVE-2022-21907 (CVSS3.1 9.8).

1 min read

Surge in Bitcoin Mining Attacks Expected

History Repeats Itself During the surge of Bitcoin prices in 2017, nefarious actors hacked everything from web servers to browsers in an attempt to mine...

Your Enemy Can Be Your Best Teacher

null

1 min read

Living Off the Land (LOTL): A Case Study

Overview During a recent incident involving LockBit ransomware, we discovered a persistent credential harvester that was hidden as a scheduled...

2 min read

Memorial Day Weekend: Ransomware Alert

Extensive Remote Workforce and Upcoming American Holiday Likely to Attract Significant Increase in Ransomware Attacks