Threat Watch

Read the latest cybersecurity news and insights from our industry experts

Daily articles & analysis by industry

Subscribe to Our Daily Newsletter

Outsmart your adversaries with daily views into the current threat landscape. The experts on our counterintelligence team analyze the latest cybersecurity news and offer insights that you can leverage to protect your business.

Latest Post

Cuba Ransomware Gains a Distribution Partner

The Cuba ransomware, active since early 2020, is now being distributed through the Hancitor malware according to a report released today by Group-IB. Hancitor is …

Daily summaries of threats, delivered straight to your inbox!

View All Posts

NFT Site Rarible Targeted in Typosquatting Campaign

Non-Fungible Tokens (NFTs) have become extremely popular as of late and have been making people a lot of money. Quite simply, NFTs are digital comps or artwork and other original …

Read More

HackBoss Cryptocurrency Malware Being Distributed Through Telegram

According to researchers at Avast Security, a new campaign has been targeting people who are looking for hacking tools on Telegram channels. The HackBoss cryptocurrency malware has been using fake …

Read More

Operation to Remove Exchange Webshells Announced by Department of Justice

To mitigate the damage from the rapid exploitation of the ProxyLogon vulnerabilities in Microsoft Exchange servers, the FBI conducted a court-approved operation to remove webshells left by one of the …

Read More

Researcher Discovers Kubernetes Denial of Service Vulnerability

CVE-2021-20291 was discovered earlier this month by Aviv Sasson. This effort was part of a security audit surveying multiple Go libraries that Kubernetes relies on to function. This vulnerability lies …

Read More

Compromised Exchange Servers Were Used to Host Payloads to Hack Other Exchange Servers

While many threat actors attempted to take advantage of the recent ProxyLogon Exchange vulnerabilities to deploy ransomware, some went in another direction. A Sophos report released Tuesday details an attack …

Read More

IcedID Malware Ramping Up

Following the takedown of Emotet, a hole was left in the malspam-as-a-service cybercrime ecosystem. IcedID, a well-known banking trojan used by multiple distinct threat groups, now seems primed to fill …

Read More

Risk and Compliance Company LogicGate Suffers Data Breach

Some information has finally been released regarding a breach of LogicGate that occurred back in February. Until this week, the company had only disclosed the information to their customers who …

Read More

Multiple Tasmania Casinos Affected in Ransomware Attack

Two out of the four casinos that are located on the Australian island of Tasmania have been affected by a ransomware attack. The attack targeted the sole casino operator in …

Read More