CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Threat Intelligence
Intel Feed

cyberintel.kalymoon.com  ·  1260 articles  ·  updated every 4 hours · grows forever

1260Total
1212Full Text
Jul 03, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
◉ Threat Intelligence
The UK Cyber Security Resilience Bill

The highly disruptive and destructive cyber incidents across the past year have reinforced the need for the U.K to raise the level of cyber resilience in all critical sectors.

Intel 471 Read →
◉ Threat Intelligence
How AI and the human advantage beat tomorrow’s threats

Relying upon AI-driven cybersecurity to fend off cyberattacks raises a paradox: improving speed and productivity is a game changer, but it carries a risk to quality, fidelity and trust. The battle aga…

Intel 471 Read →
◉ Threat Intelligence
Winter Olympics 2026: Hacktivism Surges Ahead of Protests and Suspected Sabotage

Pro-Russian hacktivists leveraged the media spotlight amidst protests and suspected acts of sabotage in Italy. But state-sponsored cyber campaigns appear muted compared to past Olympics events.

Intel 471 Read →
◉ Threat Intelligence
How Threat Hunting and “Good” Metrics Help The Business

A threat hunting program backed by the right metrics and proper documentation of hunts can reduce breach costs and, in the event of a breach, demonstrate operational maturity to insurers and regulator…

Intel 471 Read →
◉ Threat Intelligence
Likely fake ransomware operator 0APT causes panic — Our analysis

A new threat actor has launched what appears to be a fake ransomware-as-a-service (RaaS) operation called 0APT.

Intel 471 Read →
◉ Threat Intelligence
Hunting APTs: from state policy to TTPs

Our Geopolitical Intelligence and Threat Hunting teams collaborate closely to help customers monitor, respond to and mitigate cyber risks

Intel 471 Read →
◉ Threat Intelligence
CrazyHunter Ransomware

CrazyHunter is a ransomware campaign targeting healthcare that weakens endpoint defenses and escalates privileges before encrypting systems at scale.

Intel 471 Read →
◉ Threat Intelligence
DevMan Ransomware

DevMan Ransomware is a newly emerging ransomware operation observed in 2025 that has been assessed as a derivative of the DragonForce ransomware family.

Intel 471 Read →
◉ Threat Intelligence
Introducing HUNTER Tuning: a New Tool for Driving Behavioral Threat Hunt Detections

Announcing Tuning, a new utility in the Guided Threat Hunts feature of HUNTER, the industry’s leading library of behavioral hunt packages and the Hunt Management Module, available on the Verity471 cyb…

Intel 471 Read →
◉ Threat Intelligence
Battling check fraud in the U.S.

Eric Huber is Cybercrime Research Leader with TD Bank. In this Studio 471, he discusses why check fraud is such a huge problem in the U.S. and how banks can counter it.

Intel 471 Read →
◉ Threat Intelligence
Gootloader Malware Update

Gootloader resurfaced with enhanced capabilities, building on the multi-stage loader malware first seen in 2020.

Intel 471 Read →
◉ Threat Intelligence
Shai-Hulud Worm 2.0

The "Shai-Hulud" worm represents a significant escalation in software supply chain attacks, particularly within the Node.js ecosystem

Intel 471 Read →
◉ Threat Intelligence
New FvncBot Android banking trojan targets Poland

Intel 471 discovered a new Android trojan, FvncBot, that masquerades as a security application for mBank, a major Polish bank. Our Malware Intelligence team analyzed its code, which is new and not bas…

Intel 471 Read →
◉ Threat Intelligence
White Paper Preview: Black "Fraud Day” and Beyond — The Key Cyber Threats Facing the Retail Sector this Holiday Season

Black Friday kicks off retailers’ most profitable season—and also a peak period for cybercriminals, who exploit the surge in online shopping and payment activity.

Intel 471 Read →
◉ Threat Intelligence
Threat hunting case study: Detecting IAB activity

Initial access brokers sell information about or access to compromised computers. Here's how to threat hunt for a known attack behavior involving PowerShell that's used by a prolific initial access br…

Intel 471 Read →
◉ Threat Intelligence
Using deception to extract cyber threat intelligence

Tim Pappa is a former FBI supervisory special agent who specializes in deception techniques. In this Studio 471, he discusses what threat intelligence can be gained using deception and how organizatio…

Intel 471 Read →
◉ Threat Intelligence
Lynx Ransomware

Lynx Ransomware is rapidly expanding, targeting organizations across North America and Europe with data theft and double extortion, backed by a growing network of skilled affiliates.

Intel 471 Read →
◉ Threat Intelligence
Qilin Ransomware Group

Qilin Ransomware Group is a rapidly evolving RaaS operation that first became widely visible in mid-2022 and has since escalated its attacks in both volume and sophistication.

Intel 471 Read →
◉ Threat Intelligence
ClickFix: Tricking users into installing infostealers

Malware distribution campaigns that trick people into copying and pasting malicious commands, known as ClickFix, have been wildly successful. Here's an examination of ClickFix and how to defend agains…

Intel 471 Read →
◉ Threat Intelligence
Cybercrime Takedowns: Trust, Partnerships and Focus

Intel 471’s Public Sector team is regularly called upon to provide cyber investigation support, threat insights and real-life attribution in support of global law enforcement operations.

Intel 471 Read →
◉ Threat Intelligence
How card fraud is powered by underground card checkers

Payment card "checkers" are used by criminal hackers to check the validity of stolen payment card details. Here's how this in-demand underground service works.

Intel 471 Read →
◉ Threat Intelligence
Tracking down The Com

In this Studio 471, Michael Fletcher, a former Cybercrime Technical Analyst with the Australian Federal Police, describes the origin of The Com and how threat actors in this sphere pose a threat.

Intel 471 Read →
◉ Threat Intelligence
Turning Chaos into Clarity: The Next Phase of Intel 471’s Geopolitical Intelligence Solution

Discover how the next phase of Intel 471’s Geopolitical Intelligence solution protects your organization against both physical and cyber threats arising from shifting global dynamics.

Intel 471 Read →
◉ Threat Intelligence
The FBI’s Group 78: Covertly fighting ransomware?

European law enforcement officials say a secret U.S. FBI task force called Group 78 used covert tactics to disrupt the Black Basta ransomware group, but it has caused tension. Intel 471 analyzes the d…

Intel 471 Read →
← Prev 48 / 53 Next →