Archives: Out of Band

FINANCE Q1 I 2026 : INDUSTRY REPORT
2026-01-19
FINANCE Q1 I 2026 : INDUSTRY REPORT

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven

Mamba Phishing-as-a-Service Kit: How Modern adversary-in-the-middle (AiTM) Attacks Operate
2026-01-16
Mamba Phishing-as-a-Service Kit: How Modern adversary-in-the-middle (AiTM) Attacks Operate

INTRODUCTION CYFIRMA assesses that Mamba 2FA is a representative of a broader class of adversary-in-the-middle

SOLYXIMMORTAL : PYTHON MALWARE ANALYSIS
2026-01-16
SOLYXIMMORTAL : PYTHON MALWARE ANALYSIS

EXECUTIVE SUMMARY SolyxImmortal is a Python-based Windows information-stealing malware that combines

APT PROFILE – KIMSUKI
2026-01-13
APT PROFILE – KIMSUKI

Kimsuki, an advanced persistent threat (APT) group active since at least 2012, is suspected to be

CYFIRMA ANNUAL INDUSTRIES REPORT 2025 : PART 3
2026-01-12
CYFIRMA ANNUAL INDUSTRIES REPORT 2025 : PART 3

EXECUTIVE SUMMARY The CYFIRMA Industries Report provides cutting-edge cybersecurity insights and telemetry-driven

TRACKING RANSOMWARE : DEC 2025
2026-01-09
TRACKING RANSOMWARE : DEC 2025

EXECUTIVE SUMMARY Ransomware activity in December 2025 highlights an evolution toward cartel-style,

Beyond MFA: Identity Abuse Through Token Interception and Consent Manipulation
2026-01-08
Beyond MFA: Identity Abuse Through Token Interception and Consent Manipulation

EXECUTIVE SUMMARY Multi-Factor Authentication (MFA) has long been positioned as a definitive control

CYFIRMA ANNUAL INDUSTRIES REPORT 2025 : PART 2
2026-01-05
CYFIRMA ANNUAL INDUSTRIES REPORT 2025 : PART 2

EXECUTIVE SUMMARY The CYFIRMA Industries Report provides cutting-edge cybersecurity insights and telemetry-driven

Resurgence of Scattered Lapsus$ hunters
2026-01-03
Resurgence of Scattered Lapsus$ hunters

Executive Summary: Recent monitoring of underground forums and Telegram communities has identified

Fortnightly Vulnerability Summary
2026-01-02
Fortnightly Vulnerability Summary

Fortnightly Vulnerability Summary CHECK OUT THESE FAST FACTS ON FORTNIGHTLY OBSERVED VULNERABILITIES.

CYFIRMA ANNUAL INDUSTRIES REPORT 2025 : PART 1
2025-12-31
CYFIRMA ANNUAL INDUSTRIES REPORT 2025 : PART 1

EXECUTIVE SUMMARY The CYFIRMA Industries Report provides cutting-edge cybersecurity insights and telemetry-driven

CYFIRMA ANNUAL INDUSTRIES REPORT 2025
2025-12-31
CYFIRMA ANNUAL INDUSTRIES REPORT 2025

EXECUTIVE SUMMARY The CYFIRMA Industries Report provides cutting-edge cybersecurity insights and telemetry-driven

APT36 : Multi-Stage LNK Malware Campaign Targeting Indian Government Entities
2025-12-30
APT36 : Multi-Stage LNK Malware Campaign Targeting Indian Government Entities

EXECUTIVE SUMMARY CYFIRMA has identified a targeted malware campaign attributed to APT36 (Transparent

PLAUSIBLE DENIABILITY IN CYBERSPACE : THE STRATEGIC USE OF HACKTIVIST PROXIES
2025-12-24
PLAUSIBLE DENIABILITY IN CYBERSPACE : THE STRATEGIC USE OF HACKTIVIST PROXIES

EXECUTIVE SUMMARY Hacktivist Proxy Operations describe a class of deniable cyber pressure activities

APT36 LNK-BASED MALWARE CAMPAIGN LEVERAGING MSI PAYLOAD DELIVERY
2025-12-19
APT36 LNK-BASED MALWARE CAMPAIGN LEVERAGING MSI PAYLOAD DELIVERY

EXECUTIVE SUMMARY CYFIRMA is dedicated to providing advanced warning and strategic analysis of the

Quishing Campaigns : Advanced QR-Code Phishing Evaluation and Insights
2025-12-18
Quishing Campaigns : Advanced QR-Code Phishing Evaluation and Insights

EXECUTIVE SUMMARY CYFIRMA examines a sophisticated phishing campaign that leverages QR-code-based

Fortnightly Vulnerability Summary
2025-12-16
Fortnightly Vulnerability Summary

Fortnightly Vulnerability Summary CHECK OUT THESE FAST FACTS ON FORTNIGHTLY OBSERVED VULNERABILITIES.

CYFIRMA INDUSTRY REPORT : GOVERNMENT & CIVIC
2025-12-15
CYFIRMA INDUSTRY REPORT : GOVERNMENT & CIVIC

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven

NexusRoute: Attempting to Disrupt an Indian Government Ministry
2025-12-13
NexusRoute: Attempting to Disrupt an Indian Government Ministry

EXECUTIVE SUMMARY At CYFIRMA, we are committed to offering up-to-date insights into prevalent threats

RTO Challan Fraud: A Technical Report on APK-Based Financial and Identity Theft
2025-12-11
RTO Challan Fraud: A Technical Report on APK-Based Financial and Identity Theft

EXECUTIVE SUMMARY CYFRIMA’s research team uncovered a sophisticated mobile-based fraud operation