Dependency confusion: Compromising the supply chain
Public packages can be exploited and replaced with malicious ones at even the largest companies like Apple and more.
Threat Intelligence
BendyBear: A shellcode attack used for cyberespionage
BendyBear malware has proven to be one of the most dangerous, and a threat to countries across the world.
FBI warning: China-based hacking group APT41 hacks into over 100 companies
Hacking group APT41 used spearphishing attacks, publicly known exploits and carefully crafted personas to compromise more than 100 companies worldwide.
ATP group MontysThree uses MT3 toolset in industrial cyberespionage
Targeted malware is often an issue for officials such as diplomats and telecom operators. In rare cases, industries become a target, which is known as industrial...
BlackBerry exposes threat actor group BAHAMUT: Cyberespionage, phishing and other APTs
What do cybercrime, fake news, the Middle East/South Asia and a dragon from the Final Fantasy or the Dungeons & Dragons series all have in common? The answer...
Top 9 cybercrime tactics, techniques and trends in 2020: A recap
2020 was a busy year for cybercriminals, with new opportunities brought on by the COVID-19 lockdowns and digital transformation initiatives. According to McAfee’s...
KashmirBlack botnet targets WordPress, Joomla and other popular CMS platforms
If you are a malware researcher, you’ve probably heard of KashmirBlack, a botnet that has been in the wild since 2019. If you are not a malware researcher,...
BAHAMUT: Uncovering a massive hack-for-hire cyberespionage group
In October 2020, the BlackBerry Research Operations team released a comprehensive report highlighting the reach, tradecraft and sophisticated tactics of one...
Linux security and APTs: Identifying threats and reducing risk
Think your Linux system is immune to malware? Well, think again. Advanced attack groups have sophisticated PHP rootkits, web shells, exploit code and backdoors...
FBI releases Rana Intelligence Computing indicators of compromise (IOCs)
The FBI’s Cyber Division recently disclosed that Iran’s intelligence agency is employing nation-state actors and a front company, Rana Intelligence Computing,...