Weekly Intelligence Snapshot – Week 45
In our latest Weekly #Intelligence Summary: ASEC Analysis Team has seen LockBit 3.0 Ransomware deployed through Amadey Bot, an Infostealer
Beatriz Moya
November 10, 2022
Category: Intelligence Cables
Explore our comprehensive archive organized by taxonomy. Discover a wealth of information categorized by subject, theme, or type to enhance your research and understanding.
Weekly Intelligence Snapshot – Week 44
Microsoft reports the RaspberryRobin worm is now part of a malware ecosystem and one of the largest active malware distribution
Beatriz Moya
November 3, 2022
Weekly Intelligence Snapshot – Week 43
The US publishes its new #NationalSecurity Strategy focussed on China and Russia and emphasizing the key role of the Indo-Pacific
Beatriz Moya
October 27, 2022
Weekly Intelligence Snapshot – Week 42
This week the Microsoft Threat Intelligence Center reports on ransomware, “Prestige”, which targets transportation and logistics sectors in Poland and
Beatriz Moya
October 20, 2022
Weekly Intelligence Snapshot – Week 41
A CISA advisory reveals vulnerabilities exploited by China-sponsored groups. PatchTuesday: Microsoft fixes 84 #vulnerabilities (inc two 0-day).
Beatriz Moya
October 13, 2022
Weekly Intelligence Snapshot – Week 40
This week, we analyze new espionage-driven campaigns related to the Lazarus/ZINC activity cluster.
Beatriz Moya
October 6, 2022
Weekly Intelligence Snapshot – Week 39
We are closely following increased geopolitical tensions after the potential sabotage attacks to Nordstream pipelines in the Baltic sea.
Beatriz Moya
September 29, 2022
Weekly Intelligence Snapshot – Week 38
Malware analyst 3xp0rt has uploaded a Lockbit 3 ransomware builder, allowing anyone to build executables for their own operation.
Beatriz Moya
September 22, 2022
Weekly Intelligence Snapshot – Week 37
This week we report Emotet is still active. The DFIR Report describes an incident in May 2022 which began with
Mike Bailey
September 15, 2022
Weekly Intelligence Snapshot – Week 36
This week we analyze the latest campaign of the alleged Russian #threatactor TA505 and how it uses ServHelper and TeslaGun
Beatriz Moya
September 8, 2022
Interested in becoming a premium customer?
Unlock exclusive benefits by becoming a premium customer
Can't find what you are looking for?
Try searching our blog
Recent Posts
Threat Intelligence Snapshot: Week 27, 2025
Russian GRU Campaign Targets European Companies In Logistics, Maritime and IT Sectors Over Ukraine Support – US Sanctions Russian Bulletproof Hosting Provider Aeza Group For Supporting Ransomware And Cybercrime
QuoINT
July 3, 2025
Threat Intelligence Snapshot: Week 26, 2025
Dire Wolf Ransomware Surfaces, Targeting Worldwide Industries | Fragile Ceasefire In Israel – Iran Conflict, Security Situation Highly Volatile
QuoINT
June 26, 2025
Threat Intelligence Snapshot: Week 25, 2025
EchoLeak Zero Click Vulnerability Enables Data Exfiltration From Microsoft 365 Copilot Without User Interaction | Tensions In the Middle East: Countries Prepare Evacuations of Citizens In Israel and Iran
QuoINT
June 19, 2025
The Proxy Warfare: Unmasking Russia’s Externalized Cyber Capabilities
This first article in a three-part series explores Russia’s model of outsourcing cyber operations to non-state actors. Drawing on leaks, indictments, and intelligence sources, the study analyzes how Russia leverages private companies, hacktivist collectives, and eCrime groups to expand and strengthen its cyber capabilities.
Alixia Clarisse Rutayisire
June 17, 2025
