Threat analysis
NSFOCUS APT Monthly Briefing – April 2025
Regional APT Threat Situation Overview In April 2025, the global threat hunting system of Fuying Lab discovered a total of 20 APT attack activities. These activities are mainly distributed in East Asia, ...
NSFOCUS APT Monthly Briefing – March 2025
Regional APT Threat Situation Overview In March 2025, the global threat hunting system of NSFOCUS Fuying Laboratory discovered a total of 19 APT attack activities. These activities were mainly distributed in South ...
A Deep Analysis of the Ransomware Group Babuk2’s Recent Activities
Overview Recently, NSFOCUS CERT detected that the Babuk2 group has been frequently publishing sensitive data of several well-known organizations on its dark web site. The data is from multiple sectors, including government, ...
Malware found in Solana npm library raises the bar for crypto security
Unknown malicious actors compromised an open source library affiliated with the Solana blockchain platform, putting untold numbers of cryptocurrency platforms and individual wallets at risk of theft ...
What we know about BlackCat and the MGM hack
More than a week after it suffered a crippling ransomware attack, the hotel giant MGM is struggling to recover. The attack, linked to the ransomware-as-a-service (RaaS) group known as ALPHV, or BlackCat, ...
Effective Threat Intelligence Through Vulnerability Analysis
Vulnerabilities are weaknesses leveraged by adversaries to compromise the confidentiality, availability or integrity of a resource. The vulnerability ecosystem has matured considerably in the last few years. A significant amount of effort ...
Using Similar Taxonomies To Understand Present And Future Security Challenges
via Terena.org In what is certainly the single most fascinating and well-crafted piece on the taxonomy of organized crime in months; and it's present and future significance for information and cyber security ...
Winning with Cyber Threat Intelligence: Taking a More Personal View
In this final article of our trilogy, we investigate how a cyber threat intelligence (CTI) analyst and associated programmes provide insight about physical and cyber threats to your organisation. The value of ...
Sounding the Pharma Alarma: An overview of the pharmaceutical threat landscape
The whole world is fighting the spread of COVID-19 and working to return to the lives we had before. Pharmaceutical and medical research teams in different countries are busy searching for a ...
OSINT – Using Threat Intelligence to Secure Your Organisation
In my first article on Cyber Security Threat Intelligence Analysts, (CTI analysts) we covered what a CTI analyst is and discussed how they can bridge the gaps between IT, Security, and the ...
