Security Research
APT40 TTP’s
Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China ’s MSS Hainan State Security Department SUMMARY APT40—aka BRONZE MOHAWK, FEVERDREAM, G0065, Gadolinium, GreenCrash,...
Encrypted Online Platform ‘Chirpwire’ Used By Al-Qa’ida Media
Al-Qa’ida (AQ), like the Islamic State of Iraq and ash-Sham (ISIS), has experienced persistent suspensions of their accounts across various online platforms. In a continued effort to maintain their...
Kaseya IOC
Indicators of Compromise agent.crt encoded dropper 2093c195b6c1fd6ab9e1110c13096c5fe130b75a84a27748007ae52d9e951643 agent.exe dropper d55f983c994caa160ec63a59f6b4250fe67fb3e8c43a388aec60a4a6978e9f1e...
Russian Hackers Target Government Agencies, Think Tanks and NGO’s
Nobelium's Expanding Cyber Campaign: A Deep Dive into the Russian-based Hackers' Latest Attacks In recent years, cyber threats have become a significant concern for governments, organizations, and...
Commemoration of Tulsa Race Massacre Attractive Target DVE’s
While we there isn't a specific or credible intelligence indicating that violent extremists are planning to target events taking place between May 28th and June 1st, the current Homeland threat...
Active Shooter – San Jose Rail Yard
Active Shooter Incident Causes Multiple Injuries and Fatalities at Light Rail Valley Transportation Authority Control Center and Maintenance Yard in San Jose, California New reporting indicates a...
Lockbit Ransomware Targets United Kingdom Rail Network
On Wednesday, April 28, 2021, Merseyrail, a British railway company that operates in and around the city of Liverpool in northwestern England, confirmed a successful attack by cybercriminals using...
SVR Cyber Operations Tactics, Techniques and Procedures
The Federal Bureau of Investigation (FBI) and US Department of Homeland Security (DHS) assess Russian Foreign Intelligence Service (SVR) cyber actors—also known as Advanced Persistent Threat 29 (APT...
Dark Web Marketplace Remains Resilient Despite Prominent Takedown
Despite the takedown of DarkMarket, the broader dark web marketplace remains nimble and resilient. DarkMarket was one of the largest marketplaces on the dark web. The takedown likely will not have...