Research

Cyber Threat Intelligence Reports | Cybersecurity Risk Research

The latest industry news, interviews, technologies, and resources.


DeltaBoys : Black Hats On The Rise
Research 2023-05-28
DeltaBoys : Black Hats On The Rise

EXECUTIVE SUMMARY CYFIRMA research team has identified a new threat actor group on the rise with the moniker; DeltaBoys. We have assessed this unknown threat actor to be both financially…

The Meaning of ETLM for the Coming Ukrainian Offensive
Research 2023-05-22
The Meaning of ETLM for the Coming Ukrainian Offensive

EXECUTIVE SUMMARY Year and a half in the Russian war in Ukraine, the defending Ukranians are now reconstituting their attrited forces for an imminent counter-attack, which might be the last…

Evolution of KILLNET from Hacktivism to Private Hackers Company and the Role of Sub-groups
Research 2023-05-12
Evolution of KILLNET from Hacktivism to Private Hackers Company and the Role of Sub-groups

INTRODUCTION KILLNET is a prominent pro-Russian ‘hacktivist’ group that has been operating actively since the start of the Russia-Ukraine conflict. The group began its operations in February 2022, and has…

Exploiting the PowerPress 10.0 Stored Cross-Site Scripting Vulnerability (CVE-2023-1917)
Research 2023-05-06
Exploiting the PowerPress 10.0 Stored Cross-Site Scripting Vulnerability (CVE-2023-1917)

EXECUTIVE SUMMARY The PowerPress plugin, which allows WordPress users to publish and manage podcasts, was found to contain a stored Cross-Site Scripting (XSS) vulnerability. The vulnerability allowed authenticated threat actors…

Breaking the Barrier: The Impact of Unauthorized Access to Powerful AI Language Models like ChatGPT
Research 2023-04-28
Breaking the Barrier: The Impact of Unauthorized Access to Powerful AI Language Models like ChatGPT

EXECUTIVE SUMMARY OpenAI has recently launched new plugins for ChatGPT, which is a language model based on GPT-3.5 architecture. These plugins have expanded ChatGPT's capabilities, and combined with the launch…

DoNot APT Targets Individuals in South Asia using Android Malware
Research 2023-04-14
DoNot APT Targets Individuals in South Asia using Android Malware

EXECUTIVE SUMMARY Recently CYFIRMA observed a cyber-attack on an individual residing in Kashmir, India. CYFIRMA research team collected two pieces of malware from the download folder of the victim’s mobile.…

SarinLocker Ransomware
Research 2023-04-10
SarinLocker Ransomware

EXECUTIVE SUMMARY Research team at CYFIRMA has recently identified and published a report on a new European threat actor group called FusionCore. The group operates Malware-as-a-service and hacker- for-hire operations.…

ARES Leaks – Emerging Cyber Crime Cartel
Research 2023-04-07
ARES Leaks – Emerging Cyber Crime Cartel

INTRODUCTION As part of CYFIRMA Research team’s continuous external threat landscape monitoring efforts, the team has identified the emergence of a threat actor group called "ARES". This group is currently…

The Rise of FusionCore An Emerging Cybercrime Group from Europe
Research 2023-04-03
The Rise of FusionCore An Emerging Cybercrime Group from Europe

EXECUTIVE SUMMARY The CYFIRMA research team has identified a new up-and-coming European threat actor group known as FusionCore. Running Malware-as-a-service, along with the hacker-for- hire operation, they have a wide…

Exploiting the Quiz and Survey Master 8.0.8 CSRF Vulnerability (CVE- 2023-0292)
Research 2023-03-25
Exploiting the Quiz and Survey Master 8.0.8 CSRF Vulnerability (CVE- 2023-0292)

EXECUTIVE SUMMARY The cross-site request forgery (CSRF) vulnerability discovered in WordPress Quiz and Survey Master 8.0.8 is a severity(high) security flaw that could potentially compromise user data and the security…

1 2 3 10