Research

Cyber Threat Intelligence Reports | Cybersecurity Risk Research

The latest industry news, interviews, technologies, and resources.


CVE-2026-24423 – SmarterTools SmarterMail Remote Code Execution Vulnerability
Research 2026-03-12
CVE-2026-24423 – SmarterTools SmarterMail Remote Code Execution Vulnerability

EXECUTIVE SUMMARY CVE-2026-24423 is a critical unauthenticated remote code execution (RCE) vulnerability affecting SmarterTools SmarterMail, an enterprise email and collaboration platform commonly deployed by organizations and managed service providers. The…

APT Profile – Earth Lusca
Research 2026-03-11
APT Profile – Earth Lusca

Earth Lusca (aka FishMonger) is a China-linked threat actor active since 2019, that focuses primarily on cyber-espionage against government, media, telecommunications, academic, and religious organizations, while also conducting financially motivated…

TELECOMMUNICATIONS & MEDIA Q1 I 2026 : INDUSTRY REPORT
Research 2026-03-10
TELECOMMUNICATIONS & MEDIA Q1 I 2026 : INDUSTRY REPORT

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven statistics of global industries, covering one sector each week for a quarter. This report focuses on the telecommunications…

OPERATION FALSE SIREN ANDROID SPYWARE CAMPAIGN
Research 2026-03-09
OPERATION FALSE SIREN ANDROID SPYWARE CAMPAIGN

EXECUTIVE SUMMARY At CYFIRMA, we are committed to offering up-to-date insights into prevalent threats and tactics employed by malicious actors, targeting both organizations and individuals. This report documents the discovery…

TAXISPY RAT : Analysis of TaxiSpy RAT – Russian Banking – Focused Android Malware with Full Remote Control
Research 2026-03-06
TAXISPY RAT : Analysis of TaxiSpy RAT – Russian Banking – Focused Android Malware with Full Remote Control

EXECUTIVE SUMMARY This report analyzes a highly sophisticated Android Banking Trojan with integrated Remote Access Trojan (RAT) functionality, specifically targeting Russian financial institutions. The malware leverages advanced evasion techniques, such…

MATERIALS Q1 I 2026 : INDUSTRY REPORT
Research 2026-03-03
MATERIALS Q1 I 2026 : INDUSTRY REPORT

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven statistics of global industries, covering one sector each week for a quarter. This report focuses on the materials-producing…

Fortnightly Vulnerability Summary
Research 2026-03-02
Fortnightly Vulnerability Summary

Fortnightly Vulnerability Summary CHECK OUT THESE FAST FACTS ON FORTNIGHTLY OBSERVED VULNERABILITIES. Fortnight's Most Impacted Products Thunderbird | Openclaw | FreeRDP Decrease in vulnerability compared to the previous two weeks.…

Philippines Evolving Cyber Threat Landscape 2025-2026
Research 2026-03-02
Philippines Evolving Cyber Threat Landscape 2025-2026

Executive Summary The cyber threat landscape in the Philippines has intensified significantly over the past year as rapid digital adoption continues to outpace security maturity across government, businesses, and critical…

APT36 : Multi-Vector Execution Malware Campaign Targeting Indian Government Entities
Research 2026-02-27
APT36 : Multi-Vector Execution Malware Campaign Targeting Indian Government Entities

EXECUTIVE SUMMARY CYFIRMA has identified a targeted malware campaign attributed to the Pakistan-aligned threat actor Transparent Tribe (also known as APT36). The campaign primarily relies on social engineering techniques, distributing…

Telegram as the New Operational Layer of Cyber Threat Activity
Research 2026-02-26
Telegram as the New Operational Layer of Cyber Threat Activity

EXECUTIVE SUMMARY Telegram is no longer just a messaging application. It has evolved into a primary operational playground for modern threat actors. What underground forums on Tor once represented, Telegram…

1 2 3 61