Cyborg Security

Cyborg Security

Threat Overview – BlackSuit Ransomware BlackSuit ransomware recently has established itself as a significant threat since its emergence in May 2023. Originating from members of the Royal ransomware group, which was split off from the infamous Conti ransomware gang, BlackSuit represents a continuation and evolution of sophisticated ransomware tactics. Several ... Read More

Get ready to elevate your threat hunting skills with Intel 471’s exhilarating and interactive workshop, focusing on the pivotal MITRE ATT&CK Tactic: Command and Control! This isn’t just another workshop; it’s an opportunity to immerse yourself in the world of advanced threat intelligence and threat hunting, guided by the expertise ... Read More

Threat Overview – Spectre RAT The Spectre remote access trojan (RAT) is modular malware that was first seen in September of 2020, being available as a malware-as-a-service (MaaS) program. Spectre RAT is developed in C++ and gives the operator the means to employ techniques such as remotely executing commands and ... Read More

Threat Overview – Hunting for Credential Theft – Identify When an InfoStealer May be Stealing Sensitive Access The recent SnowFlake incident has brought to light the importance of protecting your credentials and access to sensitive tools. Infostealers are the highway in which many threat actors and access brokers garner their ... Read More

Security teams are faced with a reality: sometimes, adversaries are going to compromise an environment. A user may click on a link in a phishing email that leads to the download of malware that’s not caught by antivirus software. A threat actor may exploit an unpatched vulnerability in an internet-facing ... Read More

Relentless ransomware, damaging malware, emerging cyber adversaries and rapidly advancing artificial intelligence (AI) have changed the threat landscape, particularly for critical infrastructure. The need for advanced behavioral threat hunting capabilities is far greater than when we founded Intel 471 over 10 years ago. To square up to this new environment, ... Read More

Threat Overview – DarkGate Malware DarkGate malware variant was first observed in the wild in 2018 (seemingly in production since 2017), evolving into a more dangerous and widespread version of itself in recent years – more notably after the takedown of the Qbot infrastructure, there has been a surge in ... Read More

Threat Overview – GootLoader Malware The GootLoader malware variant is identified as a downloader, and is used to facilitate the pathway to the next stage(s) of infection. Seen in the wild since late 2020, the variant is known to infect victims systems via SEO (Search Engine Optimization) poisoning – which ... Read More

Threat Overview – Black Basta Ransomware and Threat Group **Black Basta** Ransomware and Threat Group (originally seen in 2022) is known to encrypt files on a victim’s computer or network, and hold data “ransom” until the victim pays the attacker for the decryption key/software. Further, the group utilizes a double ... Read More

The fusion of Cyborg Security with Intel 471 delivers advanced behavioral detections and unprecedented insight into the threat actor landscape. WILMINGTON, DE, APRIL 30, 2024- Intel 471, the premier global provider of cyber threat intelligence (CTI) solutions, today announced that the company acquired Cyborg Security, founded in 2019, to provide ... Read More