Research, News, and Perspectives

Cloud

Analyzing the Hidden Danger of Environment Variables for Keeping Secrets

While DevOps practitioners use environment variables to regularly keep secrets in applications, these could be conveniently abused by cybercriminals for their malicious activities, as our analysis shows.

Aug 17, 2022

Cloud

What Exposed OPA Servers Can Tell You About Your Applications

This blog entry discusses what an OPA is and what it’s for, what we’ve discovered after identifying 389 exposed OPA servers via Shodan, and how exposed OPAs can negatively impact your applications’ overall security.

Research Aug 16, 2022

Cyber Threats

Oil and Gas Cybersecurity: Recommendations Part 3

In the final part of our series, we look at the APT33 case study and several recommendations from our expert team.

Research Aug 15, 2022

Iron Tiger Compromises Chat Application Mimi, Targets Windows, Mac, and Linux Users

We found APT group Iron Tiger's malware compromising chat application Mimi’s servers in a supply chain attack.

Aug 12, 2022

Cyber Threats

Oil and Gas Cybersecurity: Threats Part 2

In part two of our oil and gas series, we look at more threats that can expose the industry to cyberattacks.

Aug 11, 2022

Malware

CopperStealer Distributes Malicious Chromium-based Browser Extension to Steal Cryptocurrencies

We tracked the latest deployment of the group behind CopperStealer, this time stealing cryptocurrencies and users’ wallet account information via a malicious Chromium-based browser extension.

Aug 11, 2022

Compliance & Risks

Improve Threat Detection & Response with OCSF

New open source initiative helping organizations to detect and respond to cyber-attacks faster and easier

Forecasting Metaverse Threats: Will it Become Metaworse?

This report shares threat predictions concerning a rapidly evolving area of the physical and digital word – the metaverse. We refine our definition of the metaverse, while identifying threats against it and inside it.

Research Aug 09, 2022

Privacy & Risks

Facebook's Metaverse is Expanding the Attack Surface

Understand the cybersecurity risks in the Metaverse

Oil and Gas Cybersecurity: Industry Overview Part 1

With geopolitical tensions running high, oil and gas companies may be more susceptible to cyberattacks.

Aug 08, 2022

Explore the Cyber Risk Index (CRI)

Research, News, and Perspectives

New APT Group Earth Berberoka Targets Gambling Websites With Old and New Malware

Analyzing the Hidden Danger of Environment Variables for Keeping Secrets

What Exposed OPA Servers Can Tell You About Your Applications

Oil and Gas Cybersecurity: Recommendations Part 3

Iron Tiger Compromises Chat Application Mimi, Targets Windows, Mac, and Linux Users

Oil and Gas Cybersecurity: Threats Part 2

CopperStealer Distributes Malicious Chromium-based Browser Extension to Steal Cryptocurrencies

Improve Threat Detection & Response with OCSF

Forecasting Metaverse Threats: Will it Become Metaworse?

Facebook's Metaverse is Expanding the Attack Surface

Oil and Gas Cybersecurity: Industry Overview Part 1

Explore the Cyber Risk Index (CRI)

Research, News, and Perspectives

Trending Topics