Cybercrime & Digital Threats

The popularity of QR codes has created fertile ground for malicous actors to spruce up their malware tool kit for scams that steal not only personal information but also hard-earned assets that are impossible to recover once lost. We take a closer look at the different QR code-related scams and provide helpful tips on how to use QR codes safely.

More organizations are applying a DevOps thought-process and methodology to optimize software development. One of the main tools used in this process is a continuous integration (CI) tool, which automates the integration of code changes from multiple developers working on the same project.

We examine an emerging business model that involves access brokers selling direct access to organizations and stolen credentials to other malicious actors.

We looked into the security of kubectl plug-ins in Krew and how supply chains' projects can be at risk.

Our research paper takes a close look at the cybermercenary group Void Balaur's services, activities, and targets.

Read about the impact of ransomware to critical industries in 1H, how modern ransomware operators gain initial access to organizations, and what decision-makers can do to defend against this menacing threat.

Ransomware as a service (RaaS) equips prospective attackers, even those who possess minimal technical skills and knowledge, with the ammunition they need to launch attacks. This in turn helps ransomware spread quickly to more targets. What exactly is RaaS, and which ransomware families and techniques are associated with it?

Our infographic provides a quick and comprehensive overview of Zloader, which has been involved in numerous campaigns over the past few years.

Our research provides a detailed analysis of the new tools and techniques used by Earth Baku in its cyberespionage campaign against organizations in the Indo-Pacific region.