Research

Cyber Threat Intelligence Reports | Cybersecurity Risk Research

The latest industry news, interviews, technologies, and resources.


KYCShadow: An Android Banking Malware Exploiting Fake KYC Workflows for Credential and OTP Theft
Research 2026-04-24
KYCShadow: An Android Banking Malware Exploiting Fake KYC Workflows for Credential and OTP Theft

Executive Summary This report presents an analysis of an Android malware masquerading as a bank KYC verification application, distributed via WhatsApp and primarily targeting users in India. The application operates…

CHINA CYBERSECURITY THREAT INTELLIGENCE REPORT
Research 2026-04-22
CHINA CYBERSECURITY THREAT INTELLIGENCE REPORT

Executive Summary: China's cyber threat landscape during 2025–2026 is shaped by sustained inbound targeting from multiple foreign state-sponsored actors, persistent ransomware pressure across high-value sectors, and an expanding foreign intelligence…

APT Profile – Red Menshen
Research 2026-04-22
APT Profile – Red Menshen

Red Menshen is a China-linked advanced threat actor active since at least 2021, known for deploying highly stealthy “digital sleeper cells” within telecommunications networks. Its campaigns are designed to enable…

Crystal Ball Series
Research 2026-04-22
Crystal Ball Series

Crystal Ball Series In this Instalment we Explore Preemptive Cybersecurity will Dominate as Standard Predict first. Preempt early. That's the new cybersecurity standard. In the past Mean Time to Detect…

GOVERNMENT & CIVIC Q1 I 2026 : INDUSTRY REPORT
Research 2026-04-20
GOVERNMENT & CIVIC Q1 I 2026 : INDUSTRY REPORT

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven statistics of global industries, covering one sector each week for a quarter. This report focuses on the government…

Operation PhantomCLR : Stealth Execution via AppDomain Hijacking and In-Memory .NET Abuse
Research 2026-04-17
Operation PhantomCLR : Stealth Execution via AppDomain Hijacking and In-Memory .NET Abuse

EXECUTIVE SUMMARY At CYFIRMA, we continuously monitor evolving cyber threats targeting enterprises and critical sectors. This report presents the discovery and in-depth analysis of a highly sophisticated, multi-stage post-exploitation framework…

Fortnightly Vulnerability Summary
Research 2026-04-15
Fortnightly Vulnerability Summary

Fortnightly Vulnerability Summary CHECK OUT THESE FAST FACTS ON FORTNIGHTLY OBSERVED VULNERABILITIES. Fortnight's Most Impacted Products Chrome | OpenClaw | MacOS Increase in vulnerability compared to the previous two weeks.…

Crystal Ball Series
Research 2026-04-14
Crystal Ball Series

Crystal Ball Series In this Instalment we Explore Attackers will Overwhelmingly Avoid Persistence Predictive Threat Intelligence: The future of defense is knowing before they move. APTs will remain undetected for…

Silent Crypto Wallet Takeover Unlimited USDT Approval Exploitation via Trust Wallet QR Code Phishing
Research 2026-04-14
Silent Crypto Wallet Takeover Unlimited USDT Approval Exploitation via Trust Wallet QR Code Phishing

EXECUTIVE SUMMARY This report details an active QR code–based crypto drainer campaign targeting Trust Wallet users via Telegram distribution channels. The attack abuses Trust Wallet’s deep link mechanism to redirect…

CVE-2026-1492 WordPress User Registration & Membership Authentication Bypass Flaw
Research 2026-04-11
CVE-2026-1492 WordPress User Registration & Membership Authentication Bypass Flaw

EXECUTIVE SUMMARY CVE-2026-1492 is a critical authentication bypass and privilege escalation vulnerability affecting the User Registration & Membership plugin for WordPress (versions ≤ 5.1.2). The vulnerability arises due to improper…

1 2 3 64