Research

Cyber Threat Intelligence Reports | Cybersecurity Risk Research

The latest industry news, interviews, technologies, and resources.


Windows Internet Key Exchange (IKE) Remote Code Execution Vulnerability Analysis
Research 2022-11-25
Windows Internet Key Exchange (IKE) Remote Code Execution Vulnerability Analysis

Windows Internet Key Exchange (IKE) Remote Code Execution Vulnerability Analysis (CVE-2022-34721) Executive Summary CYFIRMA research team observed a series of exploits active in the wild targeting Windows Internet Key Exchange…

From North Korean Phishing to Underground Online Hosting Services
Research 2022-11-16
From North Korean Phishing to Underground Online Hosting Services

From North Korean Phishing to Underground Online Hosting Services Executive Summary During CYFIRMA's routine research on advanced persistent threat actors (APT) activity, we observed North Korean actors using a malicious…

Prestige Ransomware Analysis
Research 2022-11-10
Prestige Ransomware Analysis

Prestige Ransomware Analysis Executive Summary CYFIRMA Research team has seen an uptick in threat actor-orchestrated ransomware campaigns. We have reasons to believe that Prestige Ransomware has been used with notable…

Unknown Nation-Based Threat Actor Using Android RAT to Target Indian Defence Personnel
Research 2022-11-07
Unknown Nation-Based Threat Actor Using Android RAT to Target Indian Defence Personnel

Unknown Nation-Based Threat Actor Using Android RAT to Target Indian Defence Personnel Executive Summary The CYFIRMA research team recently detected a malicious android APK targeting Indian Defence Personnel. Our research…

Phishing Attacks Leverage Deceptive Website Builders to Target AT&T Users
Research 2022-10-31
Phishing Attacks Leverage Deceptive Website Builders to Target AT&T Users

Phishing Attacks Leverage Deceptive Website Builders to Target AT&T Users Executive Summary The CYFIRMA research team observed threat actors using free website builders to clone and deceive popular brand websites…

Fortinet Authentication Bypass Vulnerability Exploited by Threat Actors
Research 2022-10-27
Fortinet Authentication Bypass Vulnerability Exploited by Threat Actors

Fortinet Authentication Bypass Vulnerability Exploited by Threat Actors EXECUTIVE SUMMARY A critical Authentication Bypass Vulnerability in Fortinet Appliances tracked as CVE-2022-40684 has been discovered to be actively exploited in the…

Infostealer Prynt Malware a Deep Dive into Its Process Injection Technique
Research 2022-10-14
Infostealer Prynt Malware a Deep Dive into Its Process Injection Technique

Infostealer Prynt Malware a Deep Dive into Its Process Injection Technique EXECUTIVE SUMMARY CYFIRMA Research team has seen an uptick in threat actor orchestrated cyber campaigns aimed at stealing confidential…

Advanced Social Engineering Attacks Deconstructed
Research 2022-10-04
Advanced Social Engineering Attacks Deconstructed

Advanced Social Engineering Attacks Deconstructed EXECUTIVE SUMMARY The team at CYFIRMA has analyzed and researched social engineering attacks in depth. The research paper reports techniques used by various threat actors…

Thousands of TP-Link Routers Vulnerable, Can be Exploited by Multiple Hackers
Research 2022-09-28
Thousands of TP-Link Routers Vulnerable, Can be Exploited by Multiple Hackers

Thousands of TP-Link Routers Vulnerable, Can be Exploited by Multiple Hackers EXECUTIVE SUMMARY As per CYFIRMA’s latest research report, thousands of TP-Link routers being used globally, are still vulnerable and…

Erbium Stealer Malware Report
Research 2022-09-25
Erbium Stealer Malware Report

Erbium Stealer Malware Report Executive Summary The Erbium malware is an information-stealer/ info stealer, which is distributed as Malware-as- a-Service (MaaS). CYFIRMA research team observed this malware binary in Aug-2022…

1 2 3 7