cyberintel.kalymoon.com · 430 articles · updated every 4 hours · grows forever
Key Takeaways Private Threat Briefs: 20+ private DFIR reports annually. Contact us today for pricing or a demo! Table of Contents: Case Summary Analysts Initial Access Execution Persistence Privilege …
Key Takeaways Private Threat Briefs: 20+ private DFIR reports annually. Contact us today for pricing or a demo! Table of Contents: Case Summary Analysts Initial Access Execution Persistence Privilege …
Researchers from The DFIR Report, in partnership with Proofpoint, have identified a new and resilient variant of the Interlock ransomware group’s remote access trojan (RAT). This new malware, a shift …
Key Takeaways Case Summary This intrusion began in November 2024 with a password spray attack targeting an internet-facing RDP server. Over the course of several hours, the threat actor attempted logi…
Key Takeaways The DFIR Report Services Table of Contents: Case Summary In late June 2024, an unpatched Confluence server was compromised via CVE-2023-22527, a template injection vulnerability, first f…
Key Takeaways An open directory associated with a ransomware affiliate, likely linked to the Fog ransomware group, was discovered in December 2024. It contained tools and scripts for reconnaissance, e…
Key Takeaways Case Summary This case from May 2024 started with a malicious download from a website mimicking the teleconferencing application Zoom. When visiting the website and downloading a file th…
Explore a selection of the latest DFIR employment opportunities in this week’s Forensic Focus jobs round-up.
Deleted chats aren’t always the end of the story—GMDSOFT’s latest Tech Letter shows how MD-RED uncovers typed, unsent, and overlooked keyboard app data to help investigators recover critical evidence.
New tools from Semantics 21 help digital investigators surface intelligence faster, assess deepfakes, and generate structured scene descriptions — all offline and alongside existing forensic workflows…
How can vehicle data help determine who was involved in a crime? Berla demonstrates how door, seat, and seatbelt events can reconstruct occupant activity and timelines.
Missing event logs can mean missing evidence — here’s why proactive archiving is essential for reliable timeline reconstruction in digital investigations.
Read the latest DFIR news – tech-facilitated abuse and AI deepfakes, mobile anti-forensics research, investigator burnout, new DFIR tools, and more.
Join Cellebrite on March 18 to explore key trends shaping digital forensics and digital evidence in public safety.
Belkasoft CEO Yuri Gubanov discusses the company’s current line-up of products, how AI can be used in investigations, and the evolving challenges facing digital forensic investigators worldwide.
Forensics Europe Expo returns to Olympia London on 1–2 July 2026, bringing the forensic community together to explore the latest developments in crime scene investigation, laboratory science, and digi…
Emma Pickering of Refuge warns of a 62% surge in tech-facilitated abuse—from stalkerware and spy cams to deepfakes and wearable surveillance—and explains why policing and digital forensics must urgent…
AI adoption, mobile evidence challenges, and expanding toolkits are reshaping enterprise digital investigations—here are four key insights from the new 2026 State of Enterprise DFIR Report by Magnet F…
Discover what’s new on Forensic Focus – explore how Amped Replay simplifies video redaction, preview Techno Security East 2026 in Myrtle Beach, learn how ADF Pro addresses the Landeck ruling, and more…
A House of Lords inquiry has exposed a growing mental health crisis in digital forensics—one many investigators have been quietly living with for years.
Detego Global launches Artefact_Compare in Detego Analyse AI+, enabling investigators to quickly verify device integrity by comparing pre- and post-deployment snapshots across major operating systems.
Read the latest DFIR news – Magnet Forensics Virtual Summit insights, Windows USB timeline analysis, Amped Replay redaction updates, and more.
SS8’s Discovery platform helped a South American intelligence agency cut complex homicide evidence review from weeks to hours—fusing fragmented data into secure, actionable intelligence that accelerat…
Redpoint, Cytactic announce AI-based cyber crisis response integration The Jerusalem Post