Are You Ransomware Aware? The No. 1 Cybersecurity Threat that You Cannot Afford to Ignore The No. 1 Cybersecurity Threat that You Cannot Afford to Ignore ..read more

Don’t Wait for Them to Find You: What You Need to Know Today About Nation-State Threat Actors Disinformation is a known tool for nation-state threat actors. Learn what it means for threat intelligence practitioners. What You Need to Know Today About Nation-State Threat Actors ..read more

Details on BRONZE VINEWOOD, Implicated in Targeting of the U.S. Election Campaign The likely China-based targeted threat group has been active since at least 2017, using a combination of custom and native tools to steal data from its targets ..read more

Counter Threat Unit Researchers Publish Threat Group Definitions The goals of sharing these profiles are to provide insight into CTU characterizations, encourage feedback, and promote discussions within the security community. The goals of sharing these profiles are to provide insight into CTU characterizations, encourage feedback, and promote discussions within the security community ..read more

Cybercriminals Target U.S. Citizens for COVID-19 Stimulus Fraud Threat actors are selling and buying U.S. taxpayers’ data on underground forums to facilitate theft of coronavirus-relief stimulus checks and income tax refunds. Threat actors are selling and buying U.S. taxpayers’ data on underground forums to facilitate theft of coronavirus-relief stimulus checks and income tax refunds ..read more

Weekly Threat Intelligence Bulletin: COVID-19 A timely snapshot of the global threat landscape for security and business leaders. This concise, weekly snapshot from our team of researchers summarizes the cyber threat activity they’re observing around the world as it relates to changing business and technology infrastructures ..read more

How Cyber Adversaries are Adapting to Exploit the Global Pandemic Threat actors pivot their tactics to exploit perceived COVID-19 information vacuums, increased reliance on remote conferencing platforms, and victims’ fears. Threat actors pivot their tactics to exploit perceived COVID-19 information vacuums, increased reliance on remote conferencing platforms, and victims’ fears ..read more

Business as Usual For Iranian Operations Despite Increased Tensions In spite of concerns regarding Iran’s threatened retaliation for geopolitical events, Iranian threat groups continue to focus on long-running cyberespionage activity. In spite of concerns regarding Iran’s threatened retaliation for geopolitical events, Iranian threat groups continue to focus on long-running cyberespionage activity ..read more

United We Stand: Support for Coalfire Consultants and The Information Security Community Recent events have broad implications for penetration testing, potentially making organizations more vulnerable to legitimate criminals. Recent events have broad implications for penetration testing, potentially making organizations more vulnerable to legitimate criminals ..read more

REvil: The GandCrab Connection Technical links between the REvil and GandCrab ransomware families prove that the GandCrab malware authors did not retire in June 2019 as they claimed. Technical links between the REvil and GandCrab ransomware families prove that the GandCrab malware authors did not retire in June 2019 as they claimed ..read more