Cybercrime & Digital Threats

Our research examines how cloud tunneling services work and how organizations can thwart threats that abuse them.

The Data Distribution Service (DDS) standard drives thousands of systems every day as a middleware component for machine-to-machine communication with real-time requirements.

Our research into cloud-based cryptocurrency mining sheds light on the malicious actor groups involved in this space, their ongoing battle for cloud resources, and the actual extent of the impact of their attacks.

In collaboration with the Cybersecurity Program of OAS/CICTE, we examine the cybersecurity challenges affecting member states of the OAS. These issues include ransomware and active attacks, threats related to remote work, and the risks brought about by the adoption of new technologies.

SMS PVA services allow their customers to create disposable user profiles or register verified accounts on many popular platforms. Unfortunately, criminals can misuse these services to conduct fraud or other malicious activities.

The popularity of QR codes has created fertile ground for malicous actors to spruce up their malware tool kit for scams that steal not only personal information but also hard-earned assets that are impossible to recover once lost. We take a closer look at the different QR code-related scams and provide helpful tips on how to use QR codes safely.

More organizations are applying a DevOps thought-process and methodology to optimize software development. One of the main tools used in this process is a continuous integration (CI) tool, which automates the integration of code changes from multiple developers working on the same project.

We examine an emerging business model that involves access brokers selling direct access to organizations and stolen credentials to other malicious actors.

We looked into the security of kubectl plug-ins in Krew and how supply chains' projects can be at risk.