Research

Cyber Threat Intelligence Reports | Cybersecurity Risk Research

The latest industry news, interviews, technologies, and resources.

Research 2025-02-06

APT QUARTERLY HIGHLIGHTS : Q4 2024

APT QUARTERLY HIGHLIGHTS : Q4 2024 EXECUTIVE SUMMARY In Q4 2024, Advanced Persistent Threat (APT) groups from China, North Korea, Iran, and Russia intensified their cyber operations, showcasing increasingly sophisticated…

Research 2025-02-04

FLESH STEALER : UNMASKING THE BLUE MASKED THIEF

Executive Summary At CYFIRMA, we are dedicated to providing timely insights into emerging threats and tactics used by cybercriminals targeting individuals and organizations. This report examines Flesh Stealer, a .NET…

Research 2025-01-31

Fortnightly Vulnerability Summary

Fortnightly Vulnerability Summary CHECK OUT THESE FAST FACTS ON FORTNIGHTLY OBSERVED VULNERABILITIES. Fortnight’s Most Impacted Products MacOS | Magma | Linux Fortnightly Trends in Vulnerabilities

Research 2025-01-30

ASTRAL STEALER ANALYSIS

EXECUTIVE SUMMARY At CYFIRMA, we are dedicated to providing timely insights into emerging threats and tactics used by cybercriminals targeting individuals and organizations. This report explains the skills of the…

Research 2025-01-28

WINDOWS LOCKER RANSOMWARE

EXECUTIVE SUMMARY CYFIRMA has identified a new ransomware strain, "Windows Locker," which targets victims by encrypting their files and appending the .winlocker extension to the affected files. Upon infection, the…

Research 2025-01-27

CYFIRMA ANNUAL INDUSTRIES REPORT : PART 3

EXECUTIVE SUMMARY The CYFIRMA Industries Report provides cutting-edge cybersecurity insights and telemetry-driven statistics on global industries. Spanning the last 365 days and highlighting year-over-year changes between 2023 and 2024, this…

Research 2025-01-23

CYFIRMA INDUSTRY REPORT : REAL ESTATE & CONSTRUCTION

EXECUTIVE SUMMARY The CYFIRMA Industriy Report delivers original cybersecurity insights and telemetry-driven statistics of global industries, covering one sector each week for a quarter. This report focuses on the real…

Research 2025-01-22

CVE-2024-45387: Critical Vulnerability in Apache Traffic Control

EXECUTIVE SUMMARY CVE-2024-45387 is a critical SQL injection vulnerability in Apache Traffic Control's Traffic Ops component. This flaw allows privileged users to execute arbitrary SQL queries, potentially leading to unauthorized…

Research 2025-01-21

‘Nnice’ RANSOMWARE

EXECUTIVE SUMMARY The CYFIRMA Research and Advisory team has found ‘Nnice’ Ransomware while monitoring various underground forums as part of our Threat Discovery Process. The ransomware targets Windows systems with…