Threat Intelligence

The Voice of Cyber®

Threat Intelligence

Threat Intelligence is a cornerstone of effective cybersecurity involving the collection, analysis, and dissemination of information about potential cyber threats to inform decision-making and enhance an organisation’s security posture. Threat intelligence encompasses data on emerging vulnerabilities, attack techniques, and the tactics employed by threat actors.

Newest Release

Curly COMrades: Evasion and Persistence via Hidden Hyper-V Virtual Machines

from Oisin O'Callaghan | November 5, 2025 | Reports & Predictions, Security Operations, Threat Intelligence

Bitdefender first documented the Curly COMrades threat actor, operating to support Russian interests in geopolitical hotbeds, in August 2025. Since that initial discovery, subsequent forensics and incident response efforts have revealed critical new tools and techniques. Valuable support was provided by the Georgian CERT, whose collaboration significantly advanced the investigation. It alerted us to a detected sample communicating with a compromised site we were monitoring, enabling a joint analysis. The Georgian CERT was then instrumental in evidence acquisition and conducting a forensic analysis of the compromised site itself, which the attackers leveraged as a proxy to their actual ...

No results found.

Deep Dive Articles

Claroty Team82 Uncovers Critical Vulnerabilities in Axis Video Surveillance Products

Turning Camera Surveillance on its Axis

How Emerging Technologies In Critical Infrastructure Are Expanding Cyber Risks

Introduction Emerging technologies like industrial Internet of Things, unified platform architectures, and cloud-integrated operational technology are transforming the ...

The Scattered Spider, Airline Attacks and How to Be Breach Ready!

Introduction On July 2, 2025, Qantas, Australia's flagship airline, disclosed a cyberattack that compromised the personal information of up to six million customers, first ...

Alleged Russian Hackers Target Norwegian Dam

Why this cyber attack on a Norwegian dam should have you paying attention

Qantas Breached and Customers are Fuming

Earlier today it was announced across mainstream media channels that Qantas suffered a data breach, affecting approximately six million customers. The breach was linked to a ...

What Happens When the World’s Biggest Vulnerability Database Goes Dark?

MITRE, the cornerstone of global vulnerability tracking, announcing it could go dark. For years, the field had relied on this single repository, the bedrock for tracking ...

No results found.

In The News

DigiCert Launches Inaugural RADAR Brief

October 29, 2025 | Geo-Political & Military | Security Awareness | Security Operations | Threat Intelligence

New Cyber Intelligence Reveals ‘Internet Tsunami’ Attacks and Rising Automation in Global Attacks

76 Percent of Organizations Struggle to Match the Speed of AI-Powered Attacks, Finds CrowdStrike State of Ransomware Survey

October 28, 2025 | Cyber Resilience | Security Operations | Threat Intelligence

Ransomware readiness lags as adversaries use AI across the attack chain to accelerate intrusion, encryption, and extortion

New Infoblox Research Links One of Asia’s Largest iGaming Providers to Criminal Underworld

October 27, 2025 | Cyber Resilience | Government & Policy | Security Awareness | Threat Intelligence

Infoblox Threat Intel (ITI), together with the United Nations Office on Drugs and Crime (UNODC), has linked BBIN aka Baoying Group, one of Asia’s largest iGaming providers, ...

Salty Much: Darktrace’s View on a Recent Salt Typhoon Intrusion

Salt Typhoon, a China-linked cyber espionage group, has been observed targeting global infrastructure using stealthy techniques such as DLL sideloading and zero-day exploits. ...

CrowdStrike 2025 APJ eCrime Landscape Report: Chinese Underground Marketplaces Drive Billions in Illicit Transactions; AI-accelerated Ransomware Surges

Chinese-speaking actors evade government restrictions and solicit criminal services through anonymized marketplaces; AI-accelerated ransomware operations signal next ...

Threat Spotlight: Barracuda unpacks a stealthy new phishing kit targeting Microsoft 365

October 16, 2025 | Exposure Management | Threat Intelligence

SYDNEY, Australia - 16 October 2025 - An emerging, stealthy and persistent phishing-as-a-service (PhaaS) kit is stealing credentials and authentication tokens from Microsoft ...