Threat Intelligence

The Voice of Cyber®

Threat Intelligence

Threat Intelligence is a cornerstone of effective cybersecurity involving the collection, analysis, and dissemination of information about potential cyber threats to inform decision-making and enhance an organisation’s security posture. Threat intelligence encompasses data on emerging vulnerabilities, attack techniques, and the tactics employed by threat actors.

Newest Release

JFrog Prevents Supply Chain Attack Through Binary Secret Scanning

from Brian Moussalli | July 23, 2024 | Supply Chain, Threat Intelligence

The JFrog Security Research team has recently discovered and reported a leaked access token with administrator access to Python’s, PyPI’s and Python Software Foundation’s GitHub repositories, which was leaked in a public Docker container hosted on Docker Hub. As a community service, the JFrog Security Research team continuously scans public repositories such as Docker Hub, NPM, and PyPI to identify malicious packages and leaked secrets. The team reports any findings to the relevant maintainers before attackers can take advantage of them. Although many secrets that are leaked in the same manner are encountered, this case was exceptional because it is difficult to overestimate the potential consequences ...

Dark Web Shows Cybercriminals Ready For Olympics. Are you?

By Fortinet | July 23, 2024 | Reports & Predictions | Threat Intelligence

Major sporting events like the World Cup, Super Bowl, and Wimbledon attract millions, even billions, of viewers. Argentina’s shootout win over France in the final game of the ...

Remediation Over Ratings – Achieving Third-Party Cyber Risk Reduction

By Sumit Bansal | July 11, 2024 | Risk Management | Threat Intelligence

Modern businesses focussed on third-party cyber risk reduction require both a more comprehensive solution to third-party cyber risk; one that fully manages risk by rapidly ...

Australian Energy Sector Grappling with Rising Ransomware Threat

By Matthew Lowe | June 5, 2024 | Critical Infrastructure | Security Awareness | Threat Intelligence

As the energy sector continues to embrace technology, cybersecurity needs to be prioritised. This requires investment in secure infrastructure, training programs, and skilled ...

Tenable Comment: CVE-2022-38028: GooseEgg EoP Exploit

By Tenable | April 24, 2024 | Exposure Management | Threat Intelligence

Comment and Q&A from Satnam Narang, sr. staff research engineer at Tenable on CVE-2022-38028: GooseEgg EoP Exploit

CyRC Vulnerability Advisory: CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling

By The Production Team | March 22, 2024 | Network Security | Security Operations | Threat Intelligence

IP address spoofing involves creating Internet Protocol (IP) packets with a fake source IP address. This is typically done with the intention of deceiving the recipient into ...

HijackLoader Expands Techniques to Improve Defense Evasion

By Liviu Arsene | February 8, 2024 | Digital Forensics | Threat Intelligence

CrowdStrike researchers have identified a HijackLoader (aka IDAT Loader) sample that employs sophisticated evasion techniques to enhance the complexity of the threat. Think ...

In The News

Infoblox Exposes: Chinese Cybercrime Syndicate Linking European Football Sponsors, Human Trafficking and a Trillion-Dollar Illegal Gambling Economy

July 23, 2024 | Security Awareness | Threat Intelligence

Infoblox has exposed Vigorish Viper, a Chinese cybercrime syndicate using sophisticated technology to take advantage of the AU$2.5 trillion illegal gambling economy, with ...

Imperva 2024 DDoS Threat Landscape Report: More Automation, Finserv Biggest Targets, Telco Attacks Rise 548 %, New Variants Spreading

July 17, 2024 | Reports & Predictions | Threat Intelligence

Cybersecurity expert Imperva (now a Thales company) today released its 2024 DDoS Threat Landscape report which looks at DDoS attacks activity for the first half of 2024, ...

Podcasts On Threat Intelligence

Episode 224 Deep Dive: Ben Gestier | Understanding Converging Threats: A Discussion on Cyber and Physical Security Awareness

Threat Intelligence

Independent Cyber News.

The Voice of Cyber®

Newest Release

JFrog Prevents Supply Chain Attack Through Binary Secret Scanning

Deep Dive Articles

Dark Web Shows Cybercriminals Ready For Olympics. Are you?

Remediation Over Ratings – Achieving Third-Party Cyber Risk Reduction

Australian Energy Sector Grappling with Rising Ransomware Threat

Tenable Comment: CVE-2022-38028: GooseEgg EoP Exploit

CyRC Vulnerability Advisory: CVE-2023-7060 Missing Security Control in Zephyr OS IP Packet Handling

HijackLoader Expands Techniques to Improve Defense Evasion

In The News

Infoblox Exposes: Chinese Cybercrime Syndicate Linking European Football Sponsors, Human Trafficking and a Trillion-Dollar Illegal Gambling Economy

Imperva 2024 DDoS Threat Landscape Report: More Automation, Finserv Biggest Targets, Telco Attacks Rise 548 %, New Variants Spreading

Armis Completes Australian Information Security Registered Assessors Program (IRAP) Assessment to Protected Level

July Patch Tuesday Commentary – Tenable

Tenable Commentary On RockYou2024 Password Dump

Episode 224 Deep Dive: Ben Gestier | Understanding Converging Threats: A Discussion on Cyber and Physical Security Awareness

Episode 201 Deep Dive: Glenn Maiden | A Cyber Defense Mission: Uniting Stakeholders and Sharing Expertise

Episode 165: Brenton Cooper

Episode 146: Dan Woods

Business News

Tech News

Global News

Our Podcasts

Partner With KBI

Content Production

Business News

Tech News

Global News

KBI.FM - The Cyber Podcast Network

Threats & Reports