Veriti Research has identified a growing trend – attackers leveraging cloud infrastructure to facilitate malware distribution and command-and-control (C2) operations. This evolving tactic not only makes detection more challenging but also exposes organizations to significant security risks.  Malware Hosted on Cloud Services  One of the most alarming findings from our ... Read More

  The leaked internal chat communications of the Black Basta ransomware group offer an unprecedented view into how cybercriminals operate, plan attacks, and evade detection.  The Veriti Research team analyzed these chat logs, revealing our favorite exploits, security measures they bypass, and the defenses they fear most.  Veriti Research analyzed these ... Read More

Veriti’s latest research identifies key false positive triggers in cloud environments, their underlying causes, and their impact on businesses. By understanding these issues, security teams can refine their defenses and reduce unnecessary alerts without compromising protection. Two Main Causes of False Positives in Cybersecurity Protections Brute Force and Protocol-Based False ... Read More

Veriti research has found that over 25% of organizations allow bi-directional connectivity to and from the cloud without additional security inspection – a critical misstep that exposes businesses to cyber threats. Attackers are leveraging the cloud as a launchpad for malicious activities, exploiting the trust placed in these platforms.  Identifying ... Read More

Amazon GuardDuty is often referred to as the security hub of Amazon’s cloud ecosystem. It provides advanced threat detection by analyzing run-time (OS-level) activities, network traffic logs, and security events. Amazon describes it as “a single runtime monitoring solution for your compute on AWS.”  In our latest Veriti research, we ... Read More

In recent days, Veriti Research has observed multiple attack attempts exploiting CVE-2025-0108, a critical authentication bypass vulnerability affecting Palo Alto PAN-OS. This vulnerability is actively being leveraged in the wild, highlighting the immediate need for organizations to assess their exposure and remediate immediately.  The Vulnerability: How Attackers Are Exploiting CVE-2025-0108  ... Read More

Cloud adoption has skyrocketed, but with it comes a significant challenge: misconfigurations. These security gaps make cloud environments vulnerable to data breaches, unauthorized access, malware infections, and compliance violations.  Most security teams struggle with cloud misconfigurations because lack of visibility across multi-cloud environments, inconsistent security policies leading to fragmented enforcement, ... Read More

Veriti Research has uncovered a potentially growing cyber threat campaign surrounding the release of the declassified JFK, RFK, and MLK files. Attackers are capitalizing on public interest in these historical documents to launch potential malware campaigns, phishing schemes, and exploit attempts. Our research indicates that cybercriminals are quick to react ... Read More

Veriti Research has uncovered a potentially growing cyber threat campaign surrounding the release of the declassified JFK, RFK, and MLK files. Attackers are capitalizing on public interest in these historical documents to launch potential malware campaigns, phishing schemes, and exploit attempts. Our research indicates that cybercriminals are quick to react ... Read More

As the political landscape heats up, so does the activity in the cyber threat domain. High-profile events such as inaugurations often become a prime opportunity for cybercriminals to launch malicious campaigns. With Trump’s upcoming inauguration on January 20th, our research sheds light on the digital threats tied to such politically ... Read More