How a Go Binary Locks Down Enterprise Networks in Minutes: The Story Behind Gentlemen Ransomware
Overview The enterprise threat landscape in 2026 has been reshaped by the rapid ascent of...
Read More
Inside Modern Supply Chain Intrusions: From CI/CD Abuse to Ecosystem-Wide Compromise
Modern supply chain intrusions are attacks that compromise trusted software development systems,...
Read More
Beyond TTPs: A Better Way to Attribute APT Activity Through Campaign Linkage
Introduction Attribution in cyber threat intelligence has long been built around the concept of...
Read More
Crypto Money Laundering
Crypto Money Laundering: Definition, Stages, and Common Techniques Money laundering is the process...
Read More
The Ransomware Ecosystem: Roles, Tools, and How Modern RaaS Attacks Work
Ransomware is no longer just a malicious program deployed by a single attacker — it has evolved...
Read More
Smishing Triad Targets Egypt’s Financial Sector and Postal Services
Recently, during one of our threat hunting operations, our squad identified multiple malicious...
Read More
Threat Profile: APT35 (Charming Kitten)
Executive Summary APT35, also known as Magic Hound and Charming Kitten, is an Iranian state-backed...
Read More
Suspicious ScreenConnect Abuse by Threat Actors
Recently observed an uptick in threat actors abusing RMM tools for initial access via...
Read More
Threat Profile: Conti Ransomware Group
Executive Summary Conti ransomware, first identified in 2019, quickly became one of the most...
Read More
MuddyWater: Inside Iran’s Persistent Cyber-Espionage Group Targeting the Middle East
MuddyWater, a long-running Iranian cyber-espionage group affiliated with Iran’s Ministry of...
Read More