Weekly Intelligence Snapshot – Week 5
This week, read about Lazarus targeting users with malicious decoy documents by leveraging Windows Update Client and GitHub. The North
Allison Ebel
February 3, 2022
Category: Intelligence Cables
Explore our comprehensive archive organized by taxonomy. Discover a wealth of information categorized by subject, theme, or type to enhance your research and understanding.
Weekly Intelligence Snapshot – Week 4
This week, we report on an old acquaintance striking with a new Unified Extensible Firmware Interface (UEFI) rootkit dubbed MoonBounce.
Allison Ebel
January 27, 2022
Weekly Intelligence Snapshot – Week 3
This week, we look at the recent attack on Ukrainian government websites, which further stoked already escalating tensions between Ukraine
Allison Ebel
January 20, 2022
Weekly Intelligence Snapshot – Week 2
This week, we cover Patch Tuesday. Microsoft addresses six zero-days and a wormable vulnerability, and Adobe and SAP address critical
Allison Ebel
January 13, 2022
Weekly Intelligence Snapshot – Week 1
The first edition of our Weekly Intelligence Summary of 2022 is here. It highlights Konni, a new variant of malware
Allison Ebel
January 6, 2022
APT28 Delivers Zebrocy Malware Campaign using NATO Theme as Lure
Our declassified threat intelligence analysis on a APT28 spear phishing campaign delivering Zebrocy malware to target at least a government
Allison Ebel
September 22, 2020
BlackWater Malware Leveraging Beirut Tragedy in New Targeted Campaign
You can find here the latest threat intelligence updates on the new BlackWater Malware campaign using the Beirut tragedy to
Allison Ebel
August 7, 2020
Interested in becoming a premium customer?
Unlock exclusive benefits by becoming a premium customer
Can't find what you are looking for?
Try searching our blog
Recent Posts
Threat Intelligence Snapshot: Week 27, 2025
Russian GRU Campaign Targets European Companies In Logistics, Maritime and IT Sectors Over Ukraine Support – US Sanctions Russian Bulletproof Hosting Provider Aeza Group For Supporting Ransomware And Cybercrime
QuoINT
July 3, 2025
Threat Intelligence Snapshot: Week 26, 2025
Dire Wolf Ransomware Surfaces, Targeting Worldwide Industries | Fragile Ceasefire In Israel – Iran Conflict, Security Situation Highly Volatile
QuoINT
June 26, 2025
Threat Intelligence Snapshot: Week 25, 2025
EchoLeak Zero Click Vulnerability Enables Data Exfiltration From Microsoft 365 Copilot Without User Interaction | Tensions In the Middle East: Countries Prepare Evacuations of Citizens In Israel and Iran
QuoINT
June 19, 2025
The Proxy Warfare: Unmasking Russia’s Externalized Cyber Capabilities
This first article in a three-part series explores Russia’s model of outsourcing cyber operations to non-state actors. Drawing on leaks, indictments, and intelligence sources, the study analyzes how Russia leverages private companies, hacktivist collectives, and eCrime groups to expand and strengthen its cyber capabilities.
Alixia Clarisse Rutayisire
June 17, 2025
