Breached Identities and Infostealers: One of the Largest Ongoing Data Leaks in History

Author: Eric Clay Breached identities facilitated by infostealer malware represent one of the most significant threats to corporate information security programs in 2024. The first half of this article will deal with “what is an infostealer,” so if you are already familiar with infostealers, feel free to skip directly to the following section.  Infostealer malware […]

Initial Access Broker Landscape in NATO Member States on Exploit Forum

initial-access-broker-landscape-in-nato-member-states-on-exploit-forum/

by Eric Clay and Zaid Osta  This report conducts a case study on a large sample of initial access broker (IAB) posts on the Russian-language hacking forum Exploit.in (hereinafter referred to as “Exploit”), targeting critical infrastructure in NATO member states across Europe and North America. We first examine the anatomy of typical IAB posts and […]

Dark Web Drama: LockBit and the AN Security Breach Saga

Dark Web Drama: LockBit and the AN Security Breach Saga

by Tammy Harper (CYPFER) & Eric Clay (Flare) Background An out-of-place data leak appears. The dark web is no stranger to drama. Threat groups often collude, fight, and attempt to expose each other. This past week witnessed a notable example of such conflict, involving a confrontation between the LockBit ransomware group and a threat actor […]

Crowdsourced DDoS Attacks Amid Geopolitical Events

Crowdsourced DDoS Attacks Amid Geopolitical Events

by Zaid Osta, CTI Analyst This report explores the rising trend of crowdsourced distributed denial-of-service (DDoS) attacks within the context of recent geopolitical events, examining case studies from the ongoing Russia-Ukraine and Israel-Hamas conflicts. Download the full report PDF Key Findings  Introduction DDoS attacks involve a large network of devices or compromised systems, often known […]

The Cybercrime Ecosystem and U.S. Healthcare in 2023

FI Legal Cyber Threat Landscape

By: Eric Clay, Security Researcher Download the PDF Introduction: Analyzing Cybercrime Targeting the Healthcare Sector The cybercrime ecosystem continues to reach new heights of organization, coordination, and sophistication. Every year, cybercriminals develop and use new tools, which are increasingly commoditized and sold in as-a-service business models. The rapid advancement in cybercrime poses significant challenges for […]

Report – Data Extortion Ransomware & The Cybercrime Supply Chain: Key Trends in 2023

In the past few years, threat actors have escalated ransomware from not only jeopardizing the availability of data, but also its confidentiality. This report will delve into the growing trend of data extortion in ransomware, analyzing data from numerous such attacks to understand changing trends, major threat actors, and affected industries. We aim to equip […]

Report – Stealer Logs, Single Sign On, and the New Era of Corporate Cybercrime

Stealer Logs, Single Sign On, and the New Era of Corporate Cybercrime

Introduction How many credentials do you have saved in your browser? How many form fills? How many credit cards? These may seem like innocuous questions, but the advent of infostealer malware makes them all too relevant. Infostealer variants such as RedLine, Raccoon, and Vidar infect computers and steal the browser fingerprint, which contains all of […]