Self Assessment

Archives: Out of Band

CYFIRMA INDUSTRY REPORT – MATERIALS
2025-07-21
CYFIRMA INDUSTRY REPORT – MATERIALS

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven

CVE-2025-5777 – Pre-Auth Memory Leak in Citrix NetScaler (CitrixBleed 2)
2025-07-18
CVE-2025-5777 – Pre-Auth Memory Leak in Citrix NetScaler (CitrixBleed 2)

EXECUTIVE SUMMARY CVE‑2025‑5777 is a critical information disclosure vulnerability in Citrix NetScaler

CYFIRMA INDUSTRY REPORT – MANUFACTURING
2025-07-17
CYFIRMA INDUSTRY REPORT – MANUFACTURING

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven

APT PROFILE – FANCY BEAR
2025-07-16
APT PROFILE – FANCY BEAR

Fancy Bear, also known as APT28, is a notorious Russian cyberespionage group with a long history of

Fortnightly Vulnerability Summary
2025-07-15
Fortnightly Vulnerability Summary

Fortnightly Vulnerability Summary CHECK OUT THESE FAST FACTS ON FORTNIGHTLY OBSERVED VULNERABILITIES.

OCTALYN STEALER UNMASKED
2025-07-12
OCTALYN STEALER UNMASKED

EXECUTIVE SUMMARY The Octalyn Forensic Toolkit, publicly hosted on GitHub, presents itself as a research-oriented

TRACKING RANSOMWARE : JUNE 2025
2025-07-11
TRACKING RANSOMWARE : JUNE 2025

EXECUTIVE SUMMARY In June 2025, ransomware attacks targeted critical industries such as professional

RENDERSHOCK: WEAPONIZING TRUST IN FILE RENDERING PIPELINES
2025-07-10
RENDERSHOCK: WEAPONIZING TRUST IN FILE RENDERING PIPELINES

EXECUTIVE SUMMARY RenderShock is a comprehensive zero-click attack strategy that targets passive file

GitHub Abused to Spread Malware Disguised as Free VPN
2025-07-09
GitHub Abused to Spread Malware Disguised as Free VPN

EXECUTIVE SUMMARY At CYFIRMA, we continuously monitor and investigate emerging cyber threats targeting

Phishing Attack : Deploying Malware on Indian Defense BOSS Linux
2025-07-04
Phishing Attack : Deploying Malware on Indian Defense BOSS Linux

Executive Summary CYFIRMA has identified a sophisticated cyber-espionage campaign orchestrated by

EXECUTIVE THREAT LANDSCAPE REPORT AUSTRALIA
2025-07-04
EXECUTIVE THREAT LANDSCAPE REPORT AUSTRALIA

Why Cyber Threat Actors Target Australia?Why Cyber Threat Actors Target Australia?Why Cyber Threat

Fortnightly Vulnerability Summary
2025-07-02
Fortnightly Vulnerability Summary

Fortnightly Vulnerability Summary CHECK OUT THESE FAST FACTS ON FORTNIGHTLY OBSERVED VULNERABILITIES.

CYFIRMA INDUSTRY REPORT – AUTOMOTIVE
2025-06-30
CYFIRMA INDUSTRY REPORT – AUTOMOTIVE

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven

12 DAY WAR UPDATE
2025-06-27
12 DAY WAR UPDATE

TEHRAN’S WEAKENED POSITION Militarily, Iran is in its most vulnerable position in decades. The

ODYSSEY STEALER : THE REBRAND OF POSEIDON STEALER
2025-06-26
ODYSSEY STEALER : THE REBRAND OF POSEIDON STEALER

EXECUTIVE SUMMARY The CYFIRMA research team has uncovered multiple websites employing Clickfix tactics

CYFIRMA INDUSTRY REPORT – TRANSPORTATION & LOGISTICS
2025-06-24
CYFIRMA INDUSTRY REPORT – TRANSPORTATION & LOGISTICS

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven

How Israel’s Strikes on Iran Could Change the Middle East
2025-06-23
How Israel’s Strikes on Iran Could Change the Middle East

ISRAEL STRIKES IRAN For over thirty years, Israeli Prime Minister Benjamin Netanyahu has regarded

APT36 Phishing Campaign Targets Indian Defense Using Credential-Stealing Malware
2025-06-21
APT36 Phishing Campaign Targets Indian Defense Using Credential-Stealing Malware

Executive Summary APT36, also known as Transparent Tribe, is a Pakistan-based cyber espionage group

Fortnightly Vulnerability Summary
2025-06-17
Fortnightly Vulnerability Summary

Fortnightly Vulnerability Summary CHECK OUT THESE FAST FACTS ON FORTNIGHTLY OBSERVED VULNERABILITIES.

CYFIRMA INDUSTRY REPORT – HEALTHCARE
2025-06-16
CYFIRMA INDUSTRY REPORT – HEALTHCARE

EXECUTIVE SUMMARY The CYFIRMA Industry Report delivers original cybersecurity insights and telemetry-driven