Resources, Whitepapers and Blog Information

CTI Weekly: Important Updates -Anonymous Sudan Claims Microsoft Data Theft, MOVEit Data Theft Campaign, ALPHV Malware Distribution, Port of Nagoya Ransomware Attack, DDoS Alerts, Google Analytics Risks
Key Issue: Anonymous Sudan claims to have stolen Microsoft customer...
CTI Weekly: Threat actors claiming to be affiliated with PMC Wagner target Russian entities
Key Issue: Threat actors claiming to be affiliated with PMC...
CTI Weekly: Important Updates – Clop Ransomware, Anonymous Sudan DDoS, Russian Threat Actors, and VMWare Security Advisory
Key Issue: Clop ransomware group starts extorting victims of MOVEit...
CTI Weekly: Zero-Day Vulnerability Exploited by Ransomware Groups & CISA Directive on Network Device Security
Key Issue: New victims disclosed in data theft campaigns leveraging...
CTI Weekly: Hacktivist Group Expands Tactics to Extortion, Zero-Day Vulnerability Exploited, AlphV Ransomware Upgrade
Key Issue: Anonymous Sudan targets Scandinavian Airlines in DDoS extortion...
CTI Weekly: Chinese State-Sponsored Threat Actor Engages in Targeted Intelligence Gathering, New Ransomware Campaign by FIN7, Manufacturing Sector Breaches & Compromises
Key Issue: Chinese state sponsored threat actor Volt Typhoon compromised...
CTI Weekly: Indictment of Russian Citizen Linked to Major Ransomware – USD 10M Reward, Cybercrime Challenges & Espionage Revelations
Key Issue: The US indicts a Russian ransomware operator and...
CTI Weekly: LockBit RaaS claims supply chain breach of 60+ companies; SpecTor operation nabs 288 dark web drug trade suspects; FBI seizes illicit crypto exchange websites; and more cybersecurity news
Key Issue: LockBit claims to have breached more than 60...
CTI Weekly: US Intelligence Leak Links Russia to Threat Actors
Highly confidential intelligence documents, allegedly leaked from the US Pentagon,...
CTI Weekly: Insight into Russian cyber-industrial complex, Easter phishing lures, UNC4466’s activities and Genesis Market seized
Key Issue: Vulkan Files provide unique insight into Russian cyber-industrial...
CTI Weekly: New supply chain campaign leverages the popular 3CX VOIP desktop client
Researchers recently reported on a supply chain compromise campaign that...
CTI Weekly: Ransomware group adds 53 companies to its leak site within 48 hours
Between March 22 and 24, the Clop ransomware group added...
CTI Weekly: Increasingly extreme extortion tactics leveraged by ransomware groups
Cybercriminals are using new tactics to extort victims for ransom,...
CTI Weekly: HiatusRAT malware is targeting business-grade routers to collect intelligence
The Hiatus campaign is using a new malware called HiatusRAT...
CTI Weekly: EX-22 allows malware to spread in corporate networks
This week we reported on a new post-exploitation framework labelled...
CTI Weekly: HardBit ransomware demands insurance details to facilitate negotiations
This week we reported on a recently identified ransomware group...
CTI Weekly: US hospital chain first to disclose data breach following GoAnywhere compromise
This week we reported on a data breach that exposed...
Cyber Threat Intelligence Weekly Update: 10th February 2023
ESXi VMware servers targeted in global ransomware campaigns This week...
Cyber Threat Intelligence Weekly Update: 6th February 2023
Pro–Russian hacktivists target global healthcare entities with DDoS This week...
Cyber Threat Intelligence Weekly Update: 27th January 2023
United States Justice Department disrupt Hive Ransomware operations This week...
Cyber Threat Intelligence Weekly Update: 20th January 2023
Key Issue: Sandworm linked to CaddyWiper compromise of Ukrinform’s info...
Cyber Threat Intelligence Weekly Update: 13th January 2023
Key Issue: Royal Mail compromised using LockBit ransomware, disrupting its...
Threat intelligence weekly update | 6th January 2023
Key Issue: Slack discloses data breach affecting its GitHub code...
Threat intelligence weekly update | 30th December 2022
Key Issue:  Ransomware groups increasingly compromise healthcare sector entities Cybercriminals: ...
Threat intelligence weekly update | 23rd December 2022
Key Issue: Suspected Russian threat actors target Ukrainian military application...
Threat intelligence weekly update | 16th December 2022
Key Issue: FBI targeted in data exfiltration campaigns Cybercriminals: Multiple...
Threat intelligence weekly update | 9th December 2022
Key Issue: North Korea-backed APT37 leverages Internet Explorer zero-day vulnerability...
Threat intelligence weekly update | 2nd December 2022
Key Issue: International law enforcement operations disrupt cybercriminal groups Cybercriminals:...

Week 47 | 21st – 25th November 2022

Friday 25th November 2022

Week 47 | 21st – 25th November 2022
Key Issue: Email cyberattacks targeting Arab countries rise in run...

Week 46 | 14th – 18th November 2022

Friday 18th November 2022

Week 46 | 14th – 18th November 2022
Key Issue: Lazarus Group targets multiple countries with DTrack malware...

Week 45 | 7th – 11th November 2022

Friday 18th November 2022

Week 45 | 7th – 11th November 2022
Key Issue: Russian state unit Sandworm linked to Prestige ransomware...

Week 44 | 31st Oct– 4th Nov 2022

Tuesday 8th November 2022

Week 44 | 31st Oct– 4th Nov 2022
Key Issue: Two high-severity vulnerabilities found in OpenSSL software Cybercriminals:...
Week 43 | 24th – 28th October 2022
Key Issue: Large-scale domain typosquatting campaign delivers commodity malware Cybercriminals:...
Week 42 | 17th – 21st October 2022
Key Issue: Australian businesses continue to be targeted by cybercriminal...
Week 41 | 10th – 14th October 2022
Key Issue: PoC published for Fortinet vulnerability following mass exploitation...

Week 40 | 3rd – 7th October 2022

Friday 7th October 2022

Week 40 | 3rd – 7th October 2022
Key Issue: Zero–day Microsoft Exchange vulnerability mitigation can be bypassedCybercriminals:...

Week 39 | 26th – 30th September 2022

Friday 30th September 2022

Week 39 | 26th – 30th September 2022
Key Issue: FIN7 adopts new tactics and upgrades ALPHV ransomware...
IntSum – Week 37 | 12th – 16th September 2022
Key Issue: Former Conti affiliates target Ukrainian organisations Cybercriminals: Cybercriminals...
IntSum – Week 36 | 5th – 9th September 2022
Key Issue: Hive ransomware affiliates compromise French fashion giant DamartCybercriminals:...
IntSum – Week 35 | 29th August – 2nd September 2022
Key Issue: Location data broker Kochava sued for selling sensitive...
IntSum – Week 35 | 29th August – 2nd September 2022
Key Issue: Location data broker Kochava sued for selling sensitive...
IntSum – Week 32 | 8th – 12th August 2022
Key Issue: Cybercriminals leverage new C2aaS platform for malware campaigns...
IntSum – Week 33 | 15th – 19th August 2022
Key Issue: USD 6 million worth of in–game items stolen...

Get our latest cyber intelligence insights straight into your inbox

Fill out the short form below to subscribe to our newsletter so that you never miss out on our cyber intelligence insights and news.