Examining the Johnson-Lebedev Connection & Implications
This report aims to provide an analysis of the relationship between former UK Prime Minister Boris Johnson and Evgeny Lebedev, a media mogul and son of a former KGB agent.…
Unmasking the Geopolitical Underpinnings of Ransomware Attacks: A Review
In the ever-evolving field of Cyber Threat Intelligence (CTI), understanding the motivations behind cyber-attacks is paramount for effective threat mitigation and response. While financial gain is often a primary driver,…
Threat Actor Profile: APT32
APT32, also known as OceanLotus Group, is a Vietnam-based threat group that has been active since at least 2014. This group is known for its sophisticated attacks on several private…
Threat Actor Profile: APT28
APT28, also known as Fancy Bear, Pawn Storm, Strontium, Sofacy, Sednit, and Tsar Team, is a highly sophisticated threat actor that has been active since at least 2007. This group…
APT41 Hackers Unleash WyrmSpy and DragonEgg Spyware on Android Users
The notorious APT41 hacking group, known for their extensive cyber-espionage operations, has turned their attention to Android devices, deploying two newly discovered spyware strains, WyrmSpy and DragonEgg. These strains, discovered…
JumpCloud Security Breach
JumpCloud, a US-based enterprise software firm known for its cloud directory platform, recently disclosed a security breach that was part of a highly targeted operation aimed at a select group…
In-Depth Analysis of Storm-0558 Techniques for Unauthorized Email Access
This blog post is based on the detailed analysis provided by Microsoft Security Blog on the techniques used by the threat actor tracked as Storm-0558 for unauthorized email access. Executive…
ISC Russia Report Summary
https://isc.independent.gov.uk/wp-content/uploads/2021/03/CCS207_CCS0221966010-001_Russia-Report-v02-Web_Accessible.pdf The “Russia” report by the Intelligence and Security Committee of Parliament provides an in-depth analysis of the perceived threats and challenges posed by Russia to the UK. Here are…
2014 Sony Pictures Entertainment Breach
The cyber attack on Sony Pictures Entertainment in 2014 was a meticulously planned operation that began with careful preparation well in advance of the publicized attack date. The attackers accessed…
Operation Aurora : A Deep Dive into the 2010 State-Sponsored Cyber Attack
The Operation Aurora was one of the first instances of a complex, state-sponsored cyber attack targeting multiple industries. It allegedly originated from China and targeted some of the most significant…