Search
Home
Request an Invite
Thank You
Home
Request an Invite
Thank You
Search
Home
Request an Invite
Thank You
Back to Home
Research
3rd Party App
Cyberhaven
Google Chrom Extension
Google Chrome Web Store
Phishing
Technology Sector Campaign
Cyberhaven Breach Likely Part of a Long-Term Criminal Campaign
Overview On 27 December 2024, the technology company Cyberhaven reported that an unnamed actor replaced its Google Chrome...
Domain Hijacking
Malware
Phishing
Spam
Subdomain Takeover
Industrial Spam Network
Overview Domain hijacking attacks like subdomain takeover and SPF hijacking take advantage of vulnerable or stale configurations...
Axigen Thunderbird
BlackBerry
C2
Cloudflare
CloudPhish
Cyber Espionage
Pakistan Navy
SloppyLemming
BlackBerry, SloppyLemming, and Guess Who...Cloudflare
On 18 November 2024, BlackBerry’s threat research team reported on a cyber espionage campaign targeting the Pakistan Navy....
APT42
Charming Kitten
Credentials
Iran
Mint Sandstorm
Phishing
TA453
Fake Job Boards
Fake government job boards attempt to trick job seekers into providing personal information that may be used for fraud, phishing,...
APT42
Charming Kitten
Credentials
Iran
Mint Sandstorm
Phishing
TA453
Hunting Phishers
Ever think about the duality of fishing and hunting? Folks may argue fishing is a more passive endeavor. One sets a lure...
China
Credentials
Phishing
South Asia
Credential Phishing Pages Mimicking Legitimate Webmail Login Portals
Since 1 August 2024, a likely India-nexus targeted intrusion actor has targeted entities in China and South Asia using credential...
Domain Hijacking
Metamask
Paradigm
Squarespace
Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks
In a recent article from KrebsonSecurity, they detail that at least a dozen organizations with domain names at domain registrar...
AI
AiTM
EDR
IR
Phishing
M-Trends 2024 Special Report
In this 15th edition, M-Trends provides an inside look at the evolving cyber threat landscape, with data drawn directly from...
Humans
Phishing
Pretexting
Ransomware
Verizon DBIR
2024 Data Breach Investigations Report
Another year has passed and that means another Verizon DBIR. For those that don’t want to read the full DBIR, here was...
KrebsonSecurity
Malware
Manipulaters
Phishing
‘The Manipulaters’ Improve Phishing, Still Fail at Opsec
The Resurgence of the “Manipulaters” Team – Breaking HeartSenders In January 2024, The Manipulaters pleaded with...
