#CyberThreatIntelligence

Helldown ransomware exploits Zyxel VPN flaw to breach networks

November 19, 2024 by Xynik

November 19, 2024 at 12:03PM The ‘Helldown’ ransomware operation targets vulnerabilities in Zyxel firewalls, enabling data theft and device encryption. Newly documented, it has quickly amassed victims, primarily small to medium-sized firms. Recent findings indicate potential exploitation of a specific Zyxel vulnerability, with ongoing investigations into its tactics and payloads. **Meeting Takeaways: Helldown Ransomware Operation … Read more

Why Custom IOCs Are Necessary for Advanced Threat Hunting and Detection

November 18, 2024 by Xynik

November 18, 2024 at 10:33AM Cyber Threat Intelligence (CTI) is vital for cybersecurity, emphasizing the importance of actionable, reliable, and timely information. Indicators of Compromise (IOCs) are crucial but often generic and ineffective. Custom IOCs enhance threat detection, adapt to specific risks, improve supply chain security, and support compliance, making them essential for organizational defense. … Read more

Hamas Hackers Spy on Mideast Gov’ts, Disrupt Israel

November 14, 2024 by Xynik

November 14, 2024 at 02:05AM The Hamas-affiliated group “Wirte” has conducted espionage and wiper attacks mainly targeting governments in the Middle East and Israel, leveraging the Gaza war for phishing. Its strategy has evolved from stealthy espionage to public hack-and-leak operations, showcasing cyber capabilities amidst ongoing conflict, according to Check Point Research. ### Meeting Takeaways … Read more

Chinese APTs Cash In on Years of Edge Device Attacks

November 1, 2024 by Xynik

November 1, 2024 at 04:02PM Chinese threat actors have significantly advanced their cyberattack strategies, particularly targeting edge devices. Since 2018, tactics evolved from basic attacks to sophisticated, targeted efforts against high-value organizations. Their recent focus is on stealth and persistence, utilizing advanced malware and exploiting vulnerabilities, demonstrating increased capability in overcoming cybersecurity defenses. ### Meeting … Read more

Hybrid Analysis Bolstered by Criminal IP’s Comprehensive Domain Intelligence

October 7, 2024 by Xynik

October 7, 2024 at 10:56AM Criminal IP, an AI SPERA Cyber Threat Intelligence (CTI) search engine, has partnered with Hybrid Analysis for advanced threat research. This integration offers deeper insights into malware and domain analysis, filtering out false positives and providing enhanced threat profiles. Criminal IP enhances Hybrid Analysis with real-time domain scanning and AI-powered … Read more

Mastercard’s Bet on Recorded Future a Win for Cyber Threat Intel

September 23, 2024 by Xynik

September 23, 2024 at 04:16PM Mastercard’s $2.65 billion acquisition of Recorded Future has highlighted the growing importance of cyber threat intelligence (CTI) in enterprise security strategies. The deal is expected to close in Q1 of 2025 and demonstrates the business criticality of CTI. Analysts anticipate significant growth in demand for CTI services in the coming … Read more

Mastercard’s Recorded Future Deal Furthers its AI Security Goals

September 20, 2024 by Xynik

September 20, 2024 at 08:17AM Mastercard recently announced its acquisition of cybersecurity firm Recorded Future for $2.65 billion, marking its second-largest acquisition. Recorded Future’s threat intelligence capabilities are expected to enhance Mastercard’s security services, offering real-time analytics and AI to detect and prevent cyber threats. The move aligns with Mastercard’s focus on bolstering its AI-enabled … Read more

Criminal IP and IPLocation.io Join Forces for Enhanced IP Analysis

September 11, 2024 by Xynik

September 11, 2024 at 10:10AM Criminal IP and AI SPERA have integrated their IP address-related risk detection data with IPLocation.io, enhancing the platform’s geolocation tracking capabilities. This innovative system utilizes AI and machine learning to provide accurate insights into IP addresses, offering a comprehensive resource for cybersecurity professionals. The collaboration exemplifies the impact of AI-based … Read more

Criminal IP Earns PCI DSS v4.0 Certification for Top-Level Security

September 4, 2024 by Xynik

September 4, 2024 at 10:04AM AI SPERA, a leading Cyber Threat Intelligence (CTI) company, has attained PCI DSS v4.0 certification for its flagship search engine solution, Criminal IP. This achievement strengthens the company’s position in global markets and demonstrates its commitment to enhancing security. Criminal IP offers various subscription plans, catering to different user needs, … Read more

Criminal IP and Maltego Join Forces for Enhanced Cyber Threat Search

August 12, 2024 by Xynik

August 12, 2024 at 10:29AM AI SPERA’s Criminal IP, a Cyber Threat Intelligence (CTI) search engine, has integrated with Maltego, allowing users to visualize and track cyber threat information. Powered by AI, Criminal IP’s data on malicious IPs, domains, and vulnerabilities is now accessible within Maltego, enabling efficient and comprehensive cyber investigations. Based on the … Read more