This evolving and brutally effective threat can have a significant impact on an organization’s resources, finances, and reputation, but it can be stopped Read More
The likely China-based targeted threat group has been active since at least 2017, using a combination of custom and native tools to steal data from its targets Read More
The goals of sharing these profiles are to provide insight into CTU characterizations, encourage feedback, and promote discussions within the security community. Read More
A timely snapshot of the global threat landscape for security and business leaders. Read More
Threat actors are selling and buying U.S. taxpayers’ data on underground forums to facilitate theft of coronavirus-relief stimulus checks and income tax refunds. Read More
Threat actors pivot their tactics to exploit perceived COVID-19 information vacuums, increased reliance on remote conferencing platforms, and victims’ fears. Read More
In spite of concerns regarding Iran’s threatened retaliation for geopolitical events, Iranian threat groups continue to focus on long-running cyberespionage activity. Read More
Recent events have broad implications for penetration testing, potentially making organizations more vulnerable to legitimate criminals. Read More
Technical links between the REvil and GandCrab ransomware families prove that the GandCrab malware authors did not retire in June 2019 as they claimed. Read More
The COBALT DICKENS threat group persists despite law enforcement actions and public disclosures, conducting another global campaign targeting universities. Read More
