Cybercrime

Trends and Shifts in the Underground N-Day Exploit Market

July 13, 2021

Our two-year research provides insights into the life cycle of exploits, the types of exploit buyers and sellers, and the business models that are reshaping the underground exploit market.

PAGES:
1
2
3
4
5
6
7
8
9
...
13

Using MITRE ATT&CK to Identify an APT Attack
December 15, 2020
We analyzed the tools, relationships, and behaviors used in a long-standing intrusion of a company after its security team observed malicious C&C traffic.
Read more
Securing IoT Apps
November 26, 2020
Many work-from-home employees use devices for personal and business purposes in home networks that are not as secure as that of the office. This article discusses the threats to unsecure IoT apps and provides ways to secure them.
Read more
Cybercriminal ‘Cloud of Logs’: The Emerging Underground Business of Selling Access to Stolen Data
November 16, 2020
We take a closer look at an emerging underground market that is driven by malicious actors who sell access to a gargantuan amount of stolen data, frequently advertised in the underground as “cloud of logs."
Read more
Inside the Bulletproof Hosting Business: Cybercriminal Methods and OpSec
October 06, 2020
Bulletproof hosting (BPH) services have long been crucial parts of the cybercriminal infrastructure. How do they protect malicious activities, and how do cybercriminals use them to stay in business?
Read more
Commodified Cybercrime Infrastructure: Exploring the Underground Services Market for Cybercriminals
September 01, 2020
The provision of services, as well as the way criminals operate in the underground, have gone through many changes over the years to cater to the market’s different infrastructure demands.
Read more
Hacker Infrastructure and Underground Hosting 101:Where Are Cybercriminal Platforms Offered?
July 21, 2020
Underground platforms are part of a mature ecosystem for trading cybercrime goods and services. How does a capable hosting infrastructure allow illicit activities to thrive?
Read more
Caught in the Crossfire: Defending Devices From Battling Botnets
July 07, 2020
As cybercriminals compete for dominance in their bid to create powerful botnets, users can make their own stand against warring sides by understanding how botnet malware works and securing their devices.
Read more
Operation DRBControl: Uncovering a Cyberespionage Campaign Targeting Gambling Companies in Southeast Asia
February 18, 2020
The DRBControl campaign attacks its targets using a variety of malware and techniques that coincide with those used in other known cyberespionage campaigns.
Read more
Out on a Highway Run: Threats and Risks to ITSs and Smart Vehicles
December 02, 2019
While ITS' connectivity offers new opportunities for innovation and convenience, it also widens the attack surface and provides new opportunities for cybercriminals to take advantage of, often at enterprises' and the public's expense and safety.
Read more

PAGES:
1
2
3
4
5
6
7
8
9
...
13