Cybercrime & Digital Threats

We examine an emerging business model that involves access brokers selling direct access to organizations and stolen credentials to other malicious actors.

We looked into the security of kubectl plug-ins in Krew and how supply chains' projects can be at risk.

Our research paper takes a close look at the cybermercenary group Void Balaur's services, activities, and targets.

Read about the impact of ransomware to critical industries in 1H, how modern ransomware operators gain initial access to organizations, and what decision-makers can do to defend against this menacing threat.

Ransomware as a service (RaaS) equips prospective attackers, even those who possess minimal technical skills and knowledge, with the ammunition they need to launch attacks. This in turn helps ransomware spread quickly to more targets. What exactly is RaaS, and which ransomware families and techniques are associated with it?

Our infographic provides a quick and comprehensive overview of Zloader, which has been involved in numerous campaigns over the past few years.

Our research provides a detailed analysis of the new tools and techniques used by Earth Baku in its cyberespionage campaign against organizations in the Indo-Pacific region.

Linux powers many cloud infrastructures today. However, it is not immune to threats and risks. We discuss several pressing security issues including malware and vulnerabilities that compromise Linux systems in the first half of 2021.

Our research sheds light on the tools and techniques used by TeamTNT and the potential impact of the group’s sundry malicious activities.