Threat Intelligence
Spamhaus CERT Insight Portal: Enhanced botnet C&C intelligence
More than 100 CERTs and CSIRTs rely on Spamhaus data to help remediate malware infections in their countries. Today, we’re giving them even more data to work with. The Spamhaus CERT Insight ...
Chinese Cyber Campaigns Intensify as AI Becomes Strategic Target
As the competition to lead the AI sector accelerates worldwide, cybersecurity firm CrowdStrike says China-linked threat actors are the dominant source of state-sponsored cyber activity targeting tech companies and their AI assets ...
Identity Is the New Attack Surface: How Infostealers Are Reshaping Enterprise Risk
Our essential new guide helps IT, Threat Intelligence, Fraud, and HUNT teams understand how infostealers operate, how stolen identity data fuels real-world attacks, and how organizations can move from reactive response to ...
Maximizing IOC Impact
Ive been thinking about threat intelligence lately. Specifically: indicators of compromise (IOC), how and where to share them to cause maximum pain to adversaries and help as many organizations as possible protect ...
NSFOCUS Monthly APT Insights – March 2026
Regional APT Threat Situation In March 2026, the global threat hunting system of Fuying Lab detected a total of 31 APT attack activities. These activities were primarily concentrated in regions including South ...
How Modern Enterprises Can Detect Threats Early and Reduce Ransomware Risk
Ransomware has evolved into one of the most damaging cyber threats facing modern enterprises. Today’s ransomware groups use advanced tactics such as credential compromise, lateral movement, data exfiltration, and double-extortion strategies to ...
30 Cybersecurity Search Engines Every Researcher Should Bookmark
A curated, categorised guide to 30 search engines that security researchers actually use: Shodan, Censys, Dehashed, ExploitDB, and the rest ...
Operation Saffron: Bitdefender Joins “First VPN” Takedown
An international law enforcement operation led by France and the Netherlands dismantled First VPN, a cybercriminal anonymization service used by ransomware actors, fraudsters, and data thieves across every major cybercrime investigation Europol ...
SEO poisoning campaign leverages Gemini and Claude Code impersonation to deliver infostealer
Executive summary Financially motivated eCrime actors will likely continue to expand opportunistic campaigns by impersonating AI platforms. These campaigns generate direct supply chain risk for enterprises, as threat actors target software developer ...
Threat Detection and Response Platforms: A Modern Enterprise Guide to Faster, Smarter Cyber Defense
Cyber threats are evolving faster than most organizations can respond. Modern enterprises face an increasingly complex threat landscape driven by ransomware, nation-state attacks, insider threats, cloud misconfigurations, supply chain risks, and AI-assisted ...
