Cybercrime & Digital Threats

Our research into cloud-based cryptocurrency mining sheds light on the malicious actor groups involved in this space, their ongoing battle for cloud resources, and the actual extent of the impact of their attacks.

In collaboration with the Cybersecurity Program of OAS/CICTE, we examine the cybersecurity challenges affecting member states of the OAS. These issues include ransomware and active attacks, threats related to remote work, and the risks brought about by the adoption of new technologies.

SMS PVA services allow their customers to create disposable user profiles or register verified accounts on many popular platforms. Unfortunately, criminals can misuse these services to conduct fraud or other malicious activities.

The popularity of QR codes has created fertile ground for malicous actors to spruce up their malware tool kit for scams that steal not only personal information but also hard-earned assets that are impossible to recover once lost. We take a closer look at the different QR code-related scams and provide helpful tips on how to use QR codes safely.

More organizations are applying a DevOps thought-process and methodology to optimize software development. One of the main tools used in this process is a continuous integration (CI) tool, which automates the integration of code changes from multiple developers working on the same project.

We examine an emerging business model that involves access brokers selling direct access to organizations and stolen credentials to other malicious actors.

We looked into the security of kubectl plug-ins in Krew and how supply chains' projects can be at risk.

Our research paper takes a close look at the cybermercenary group Void Balaur's services, activities, and targets.

Read about the impact of ransomware to critical industries in 1H, how modern ransomware operators gain initial access to organizations, and what decision-makers can do to defend against this menacing threat.