Threat Research – Cybersecurity News Everyday

Search Post related with “Threat Research”

*Total Collection : 4496 Threat Research (auto update every day)

Last 100 Threat Research

From SIEM to Ticketing: Streamlining Security Operations with Cado’s Export CapabilitiesJanuary 23, 2025
How a Vulnerability in Cinema Booking Systems Can Block Seats and Impact RevenueJanuary 23, 2025
Frequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack Ukraine | Microsoft Security BlogJanuary 23, 2025
Fileless Malware Nedir? S1Ep2 Cobalt Kitty OperasyonuJanuary 23, 2025
Advanced Threat Detection: Exploitation Tactics from a CIRT Technical InterviewJanuary 23, 2025
Malicious driver from Equation APTJanuary 23, 2025
Pivoting for NosviakJanuary 23, 2025
ValleyRAT: A Rootkit Leveraging Stolen Certificates and Bypassing AVsJanuary 23, 2025
Qbot is Back.ConnectJanuary 23, 2025
Beyond Flesh and Code: Building an LLM-Based Attack Lifecycle With a Self-Guided Malware AgentJanuary 23, 2025
Dark Web Profile: OilRig (APT34)January 23, 2025
PlushDaemon compromises supply chain of Korean VPN serviceJanuary 23, 2025
Threat Actors Chained Vulnerabilities in Ivanti Cloud Service ApplicationsJanuary 23, 2025
Record-breaking 5.6 Tbps DDoS attack and global DDoS trends for 2024 Q4January 22, 2025
Hidden Threats of Game Assistants | Analysis Report on the “Catlavan” Backdoor Spread in Gaming ForumsJanuary 22, 2025
Targeted supply chain attack against Chrome browser extensionsJanuary 22, 2025
Tracking Down APT Group WIRTE’s DNS MovementsJanuary 22, 2025
Imperva Protects Against the Exploited CVEs in the Cleo Data Theft AttacksJanuary 22, 2025
Supercharge Your CTI: AI-Powered IOC Collection with ChatGPT, Inoreader and Google DriveJanuary 22, 2025
The New Face of Ransomware: Key Players and Emerging Tactics of 2024January 22, 2025
Annual Payment Fraud Intelligence Report: 2024January 22, 2025
Sophos MDR tracks two ransomware campaigns using “email bombing,” Microsoft Teams “vishing”January 22, 2025
Unveiling Silent Lynx APT Targeting Entities Across Kyrgyzstan & Neighbouring NationsJanuary 22, 2025
Introducing ThreatXpose: Who, What and How of Cyber IntelligenceJanuary 21, 2025
TA505 Threat Hunting: Advanced Queries for Detecting Malware and Cyber AttacksJanuary 21, 2025
InvisibleFerret Malware: Technical AnalysisJanuary 21, 2025
Windows BitLocker — Screwed without a Screwdriver — NeodymeJanuary 21, 2025
Beware of Contacts through LinkedIn: They Target Your Organization’s Property, Not Yours – JPCERT/CC Eyes | JPCERT Coordination Center official BlogJanuary 21, 2025
How Malware Detect Virtual Machines ?January 21, 2025
Malware disguised as a Public document (personal, form) created by KimsukyJanuary 21, 2025
Analysis Report on the Latest Phishing Incident by Clickfix: The Tragedy of CAPTCHA Resistance – Security CowJanuary 21, 2025
Still Attacks by Vidar: Regular Cadence and Old Strategies Always EffectiveJanuary 21, 2025
Fortinet Zero-Day CVE-2024-55591 Exposed: Super-Admin Access RiskJanuary 21, 2025
Facilitating Phishing and Pig Butchering Activities using Zendesk Infrastructure [Bait & Switch Mode]January 21, 2025
Qbot is Back ConnectJanuary 21, 2025
RST TI Report Digest: January 20, 2025January 20, 2025
Tracking Adversaries: Ghostwriter APT InfrastructureJanuary 20, 2025
NICKEL TAPESTRY Infrastructure Associated with Crowdfunding SchemeJanuary 20, 2025
RansomHub Affiliate leverages Python-based backdoorJanuary 20, 2025
Sliver Implant Targets German Entities with DLL Sideloading and Proxying TechniquesJanuary 19, 2025
If you think you blocked NTLMv1 in your org, think againJanuary 18, 2025
Nmap for BeginnersJanuary 18, 2025
Mastering Azure Managed Identities – Attack & Defense, Part 1January 18, 2025
Detecting and mitigating CVE-2024-12084: rsync remote code executionJanuary 18, 2025
Weekly IT Vulnerability Report: Critical Updates for SAP, Microsoft, Fortinet, and OthersJanuary 18, 2025
Financial phishing exploits fake communications from the Department of HealthJanuary 18, 2025
IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024January 18, 2025
BlackSuit Ransomware Group: What Have Changed After Royal RansomwareJanuary 17, 2025
SharpRhino: An old, new threatJanuary 17, 2025
Mercedes-Benz Head Unit security research reportJanuary 17, 2025
New Star Blizzard spear-phishing campaign targets WhatsApp accounts | Microsoft Security BlogJanuary 17, 2025
Threat Bulletin: Weaponized Software Targets Chinese-Speaking OrganizationsJanuary 17, 2025
ANDROID MALWARE IN DONOT APT OPERATIONSJanuary 17, 2025
Threat Brief: CVE-2025-0282 and CVE-2025-0283January 17, 2025
Malicious PyPI Package ‘pycord-self’ Targets Discord Developers with Token Theft and Backdoor ExploitJanuary 17, 2025
From Data Capture to Analysis: How Cado Simplifies Cloud InvestigationsJanuary 17, 2025
WhoisXML API Launches First Watch Malicious Domains Data Feed with 97% Predictive PrecisionJanuary 17, 2025
Warning Against ModiLoader (DBatLoader) Spreading via MS Windows CAB Header Batch File (*.cmd)January 17, 2025
MintsLoader: StealC and BOINC DeliveryJanuary 17, 2025
Gootloader inside outJanuary 17, 2025
Fortinet firewalls hit with new zero-day attack, older data leakJanuary 17, 2025
Evading Endpoint Detection and Response EDRJanuary 17, 2025
15K Fortigate Firewall Configs Leaked By Belsen Group: Dumped Using Zero-Day in 2022January 16, 2025
Sneaky 2FA: exposing a new AiTM Phishing-as-a-ServiceJanuary 16, 2025
DigitalPulse Proxyware Being Distributed Through Ad PagesJanuary 16, 2025
Securonix Threat Labs 2024 Annual Autonomous Threat Sweeper Intelligence InsightsJanuary 16, 2025
Unpacking the LastPass Hack: A Case Study | CSAJanuary 16, 2025
JustJoin Landing Page Linked to Suspected DPRK Activity ResurfacesJanuary 16, 2025
Tracking cloud-fluent threat actors – Part two: Behavioral cloud IOCsJanuary 16, 2025
The great Google Ads heist: criminals ransack advertiser accounts via fake Google adsJanuary 16, 2025
Kimsuky Cobalt Strike Malware Test Zip 2025.1.11January 15, 2025
Ransomware and Cyber Extortion in Q4 2024January 15, 2025
“Securing Your Single-Page Applications: Essential Fixes”January 15, 2025
Practical Methods for Decapping ChipsJanuary 15, 2025
Microsoft Patch Tuesday January 2025 Security Update Review Qualys ThreatPROTECTJanuary 15, 2025
Understanding the Technology that Powers the Cado PlatformJanuary 15, 2025
Investigating A Web Shell Intrusion With Trend Micro™ Managed XDRJanuary 15, 2025
Zombies Never Die: Analysis of the Current Situation of the Large Zombie Network AIRASHIJanuary 15, 2025
Kimsuky Hacking Group’s Malware Attack on the Korean Defense Industry Association – Defense Industry Digital Innovation Seminar (Planned) (2025.1.12)January 15, 2025
Volt Typhoon: Analyzing Espionage Campaigns Against Critical InfrastructureJanuary 15, 2025
VMware ESXi Logging and Detection OpportunitiesJanuary 15, 2025
CVE-2020-10558 Denial of Service Attack for All Tesla VehiclesJanuary 15, 2025
Origins of A Logger – Agent TeslaJanuary 15, 2025
Campaign TrailRansomHub Ransomware: Darktrace’s Investigation of the Newest Tool in ShadowSyndicate’s ArsenalbyQing Hong KwaJanuary 15, 2025
New Year, Old Threats: What Does the DNS Reveal About 2025?January 15, 2025
The Evolution of Ransomware: From Simple Encryption to Double Extortio…January 15, 2025
Infostealer Logs to Fuel a New Wave of AWS Ransomware AttacksJanuary 15, 2025
One Step Ahead in Cyber Hide-and-Seek: Automating Malicious Infrastructure Discovery With Graph Neural NetworksJanuary 14, 2025
Javascript Sample – Swift Transaction Report.jsJanuary 14, 2025
The Evolution of Cybercrime Cartels: From Lone Wolves to Sophisticated Syndicates | Krypt3iaJanuary 14, 2025
Kill Switch Hidden in npm Packages Typosquatting Chalk and ChokidarJanuary 14, 2025
Analysis of a Lumma Stealer Campaign with Fake CAPTCHA Conducted Through Compromised Italian DomainJanuary 14, 2025
Deep Dive Into a Linux Rootkit MalwareJanuary 14, 2025
Double-Tap Campaign: Russia-nexus APT possibly related to APT28 conducts cyber espionage on Central Asia and Kazakhstan diplomatic relationsJanuary 14, 2025
Hunt for RedCurl | HuntressJanuary 13, 2025
Green Alliance Technology Threat Intelligence Weekly Report (2025.01.06-2025.01.12) – Green Alliance Technology BlogJanuary 13, 2025
Hack The Box EscapeJanuary 13, 2025
Statistical Report on Phishing Emails in Q4 2024January 13, 2025
VulnNet: Internal – From Recon to RootJanuary 12, 2025
Wiz Research Identifies Exploitation in the Wild of Aviatrix Controller RCE CVE-2024-50603January 12, 2025

>> Access All Threat Research

Reference for Threat Research

This Threat Research category section will FILTER and FETCH the POST (related with Analysis Report only) from the following sites:

For the sites below, automatic FETCH cannot be performed
(i need to monitor it manual, will be delay 3-7 days)

Bellow are other reference, but for some reason i’m not fetching it automatically
(i need to review the article manually, will be delay 3-5 days)

cleafy.com/labs (update 1-2 months)
guidepointsecurity.com/blog/ > category: threat advisory
research.openanalysis.net
blog.phylum.io/tag/research/
shadowstackre.com/analysis/
mssplab.github.io
farghlymal.github.io
asec.ahnlab.com/ko/
blog.bushidotoken.net
kroll.com/en/insights/publications/cyber
Sentinelone.com
blog.lumen.com

Update

December, 2024: securonixblog – Fixed (xpath error)

December, 2024: huntress – Fixed (xpath error)

December, 2024: nccgroup – Failed (Incapsula)

December, 2024: Mandiant – Removed (now part of Google Cloud)

December, 2024: antiy.cn – Failed (curl or xpath error)

December, 2024: sonicwall.com – Failed (curl error)

January, 2025: team-cymru.com (RSS Feed Removed)

Update January, 2025

“Due to copyright reasons, starting January 2025, this site will no longer display the full content of sourced articles. Only Summaries, Key Points, MITRE Tactics for Threat Research, and selected IoCs will be provided. To read the full article, please click on the ‘source’ link to view it on the original website.”