Digital Shadows Analyst Team


ShadowTalk Update: Sunburst, Sunspot, and more on SolarWinds!
January 18, 2021 | 3 Min Read

ShadowTalk Update: SolarWinds Updates, TicketMaster Fraud, Apex Cyber Attack, and More!
January 11, 2021 | 2 Min Read

ShadowTalk Update: Egregor Ransomware, IoT Regulations, Black Friday Threats and More!
November 30, 2020 | 2 Min Read

ShadowTalk Update: RegretLocker, OceanLotus, Millions Seized in Cryptocurrency, and more!
November 16, 2020 | 2 Min Read

ShadowTalk Update – Law Enforcement Cracks Down On Cybercriminals, Fancy Bear Goes Phishing, And More
September 28, 2020 | 2 Min Read

ShadowTalk Update – Ed Merrett Joins To Talk HackableYou And The Latest In Threat Intel
September 21, 2020 | 2 Min Read

ShadowTalk Update – The Team Talks Baka, Epic Manchego, and Smaug, Plus Emotet Rides Again
September 14, 2020 | 2 Min Read

ShadowTalk Update – New Zealand Stock Exchange faces DDoS, Tesla avoids cyberattack, and Pioneer Kitten updates
September 7, 2020 | 2 Min Read

ShadowTalk Update – Emotet Gets a Vaccine, NSA Drovorub Advisory, and North Korean Activity plus Bureau 121
August 24, 2020 | 3 Min Read

ShadowTalk Update – Defaced Subreddits, Intel Leak Drama on Twitter, and HIBP Goes Open-Source
August 17, 2020 | 2 Min Read

ShadowTalk Update – CWT pays ransom, data leaked for 900+ Pulse Secure Servers, EU issues first cyber sanctions
August 10, 2020 | 2 Min Read

ShadowTalk Update – Garmin ransomware attack, QSnatch malware, and ShinyHunters Stage 2
August 3, 2020 | 3 Min Read

ShadowTalk Update – Torigon, Nulledflix, and BlueLeaks, Plus DevSecOps Insights From DS CISO Rick
June 29, 2020 | 2 Min Read

ShadowTalk Update – Maze Ransomware Alliance, EndGame DDoS Protection Tool, And Ransomware Disguises
June 15, 2020 | 2 Min Read

ShadowTalk Update – Microsoft Teams ATO Vulnerability, APT32, & Uptick In Ransomware
May 1, 2020 | 3 Min Read

ShadowTalk Update – SFO Airport Hack, Fin6, And Sodinokibi Switching From Bitcoin To Monero
April 20, 2020 | 2 Min Read

ShadowTalk Update – COVID-19 Third Party App Risks, Zoom, and DarkHotel Hackers
April 13, 2020 | 3 Min Read

ShadowTalk Update – Zoom Zero-Day Vulnerabilities and Fin7 Delivering Malware Via Snail Mail
April 6, 2020 | 2 Min Read

ShadowTalk Update – Remote Worker Threat Model And Cybercrime Updates
March 30, 2020 | 2 Min Read

ShadowTalk Update – Slack Vulnerability, Apollon Dark Web Exit Scam, And Online Brand Protection
March 23, 2020 | 3 Min Read

ShadowTalk Update – Necurs Botnet, SMB Vulnerability, Coronavirus Scams, And Dark Web Updates
March 16, 2020 | 2 Min Read

ShadowTalk Update – Data Breaches, Stalkerware, and Dopplepaymer ransomware
March 2, 2020 | 2 Min Read

ShadowTalk Update – OurMine hacks FC Barcelona & Olympics twitter handles, Adsense email extortion, & phishing research
February 24, 2020 | 2 Min Read

ShadowTalk Update – OurMine Hacks, Equifax Indictment, and SWIFT POC attack
February 17, 2020 | 2 Min Read

ShadowTalk Update – CTI Frameworks, Wawa Breach Updates, APT34, and Coronavirus Phishing Scams
February 10, 2020 | 3 Min Read

ShadowTalk Update – SANS CTI Summit, Snake Ransomware, CacheOut, and Citrix Vuln Update
February 3, 2020 | 3 Min Read

ShadowTalk Update – Citrix Vulnerability, Microsoft Data Breach, and Telnet Credentials Published
January 27, 2020 | 3 Min Read

ShadowTalk Update – NSA Vulnerability Disclosure, Ransomware News, and Iran Updates
January 20, 2020 | 3 Min Read

Third Party Risk: 4 ways to manage your security ecosystem
January 16, 2020 | 5 Min Read

ShadowTalk Update – Iranian Cyber Threats, Travelex Ransomware Attack, and Exploit Forum updates
January 10, 2020 | 3 Min Read

ShadowTalk Update – Jingle Bell Ryuk: NOLA Ransomware, Ring Doorbells, and 2020 Predictions
December 23, 2019 | 3 Min Read

ShadowTalk Update – Tochka Dark Web Market Offline, Market.ms Closes, and Data Leakage Stories
December 16, 2019 | 3 Min Read

Threat Intelligence: A Deep Dive
December 12, 2019 | 21 Min Read

ShadowTalk Update – Cybercriminal Forum Research, Mixcloud Breach, and International Crackdown on RAT Spyware
December 9, 2019 | 3 Min Read

ShadowTalk Update – RIPlace, Trickbot, and Russian-language forum Probiv
December 2, 2019 | 3 Min Read

ShadowTalk Update – Black Friday Deals on the Dark Web, Phineas Fisher Manifesto, and DarkMarket
November 25, 2019 | 3 Min Read

ShadowTalk Update – BSidesDFW Recap, Dynamic CVV Analysis, and the Facebook Camera Bug
November 18, 2019 | 3 Min Read

ShadowTalk Update – BlueKeep Attacks, Megacortex Ransomware, and Web.com Breach
November 11, 2019 | 3 Min Read

ShadowTalk Update – Avast Breach Attempt, NordVPN Breach, and Wifi Security Risks
November 4, 2019 | 4 Min Read

ShadowTalk Update – Avast Breach Attempt, NordVPN Breach, and Wifi Security Risks
October 25, 2019 | 3 Min Read

ShadowTalk Update – Typosquatting and the 2020 U.S. Election, Honeypots, And Sudo Vulnerability
October 18, 2019 | 3 Min Read

ShadowTalk Update – Iran-linked APT35, Skimming by Magecart 4, Rancour, and Emotet Resurgence
October 11, 2019 | 3 Min Read

ShadowTalk Update – Tortoiseshell Targets IT Providers, the Tyurin Indictment, and Emotet’s Return
September 27, 2019 | 4 Min Read

ShadowTalk Update – Metasploit Project Publishes Exploit For Bluekeep, plus APT3 and Silence Cybercrime Group Updates
September 13, 2019 | 4 Min Read

ShadowTalk Update – Ryuk Ransomware, Twitter rids SMS tweets, and Facebook Records Exposed
September 9, 2019 | 3 Min Read

Envoy on a Mission to Bring Stability to the Criminal Underground
September 4, 2019 | 3 Min Read

ShadowTalk Update – More Sodinokibi Activity, Imperva Breach, and Weirdest Food at the Texas State Fair
September 2, 2019 | 3 Min Read

ShadowTalk Update – Texas Ransomware Outbreaks and Phishing Attacks Using Custom 404 pages
August 23, 2019 | 3 Min Read

ShadowTalk Update – More BlueKeep updates, FSB contractor hacked, and the Enigma Market
July 29, 2019 | 3 Min Read

A Growing Enigma: New AVC on the Block
July 19, 2019 | 3 Min Read

ShadowTalk Update – XMRig Cryptocurrency Mining, FIN8 Backdoor, and Attacks Against Office 365
June 17, 2019 | 3 Min Read

ShadowTalk Update – 5.06.19
May 13, 2019 | 4 Min Read

ShadowTalk Update – 5.06.19
May 6, 2019 | 3 Min Read

ShadowTalk Update – 4.29.19
April 29, 2019 | 3 Min Read

ShadowTalk Update – 4.22.19
April 22, 2019 | 3 Min Read

ShadowTalk Update – 4.15.19
April 15, 2019 | 4 Min Read

ShadowTalk Update – 4.8.19
April 8, 2019 | 3 Min Read

ShadowTalk Update – 4.1.19
March 29, 2019 | 3 Min Read

ShadowTalk Update – 3.25.19
March 25, 2019 | 4 Min Read

ShadowTalk Update – 3.18.19
March 18, 2019 | 3 Min Read

ShadowTalk Update – 3.11.19
March 11, 2019 | 3 Min Read

ShadowTalk Update – 3.04.19
March 4, 2019 | 4 Min Read

ShadowTalk Update – 2.25.19
February 25, 2019 | 4 Min Read

ShadowTalk Update – 2.18.19
February 19, 2019 | 3 Min Read

ShadowTalk Update – 2.11.19
February 8, 2019 | 3 Min Read

ShadowTalk Update – 2.4.19
February 4, 2019 | 4 Min Read

ShadowTalk Update – 1.28.19
January 26, 2019 | 3 Min Read

ShadowTalk Update – 1.21.19
January 19, 2019 | 3 Min Read

Thedarkoverlord runs out of Steem
January 16, 2019 | 6 Min Read

ShadowTalk Update – 1.14.19
January 14, 2019 | 3 Min Read

ShadowTalk Update – 17.10.2018
December 17, 2018 | 3 Min Read

ShadowTalk Update – 12.10.2018
December 10, 2018 | 3 Min Read

ShadowTalk Update – 12.03.2018
December 3, 2018 | 3 Min Read

ShadowTalk Update – 11.26.2018
November 26, 2018 | 3 Min Read

ShadowTalk Update – 11.19.2018
November 19, 2018 | 2 Min Read

ShadowTalk Update – 11.12.2018
November 12, 2018 | 2 Min Read

ShadowTalk Update – 11.05.2018
November 5, 2018 | 3 Min Read

ShadowTalk Update – 10.29.2018
October 29, 2018 | 3 Min Read

ShadowTalk Update – 10.22.2018
October 22, 2018 | 3 Min Read

ShadowTalk Update – 10.15.2018
October 15, 2018 | 3 Min Read

ShadowTalk Update – 10.08.2018
October 8, 2018 | 3 Min Read

ShadowTalk Update – 10.01.2018
October 1, 2018 | 3 Min Read

ShadowTalk Update – 09.24.2018
September 24, 2018 | 3 Min Read

ShadowTalk Update – 09.17.2018
September 17, 2018 | 2 Min Read

ShadowTalk Update – 09.10.2018
September 10, 2018 | 3 Min Read

ShadowTalk Update – 09.03.2018
September 3, 2018 | 3 Min Read

ShadowTalk Update – 08.27.2018
August 27, 2018 | 3 Min Read

ShadowTalk Update – 08.20.2018
August 20, 2018 | 3 Min Read

ShadowTalk Update – 08.13.2018
August 13, 2018 | 3 Min Read

ShadowTalk Update – 08.06.2018
August 6, 2018 | 2 Min Read

FIN7: Arrests and Developments
August 2, 2018 | 6 Min Read

ShadowTalk Update – 07.30.2018
July 30, 2018 | 3 Min Read

ShadowTalk Update – 07.23.2018
July 23, 2018 | 3 Min Read

ShadowTalk Update – 07.16.2018
July 16, 2018 | 2 Min Read

ShadowTalk Update – 07.09.2018
July 9, 2018 | 3 Min Read

ShadowTalk Update – 07.02.2018
July 2, 2018 | 3 Min Read

ShadowTalk Update – 06.25.2018
June 25, 2018 | 3 Min Read

ShadowTalk Update – 06.18.2018
June 18, 2018 | 3 Min Read

Shadow Talk Update – 06.11.2018
June 11, 2018 | 3 Min Read

Shadow Talk Update – 06.04.2018
June 4, 2018 | 3 Min Read

Shadow Talk Update – 05.29.2018
May 29, 2018 | 4 Min Read

Security Analyst Spotlight Series: Rose Bernard
May 23, 2018 | 5 Min Read

Shadow Talk Update – 05.21.2018
May 21, 2018 | 3 Min Read

Shadow Talk Update – 05.14.2018
May 14, 2018 | 3 Min Read

Shadow Talk Update – 05.07.2018
May 7, 2018 | 3 Min Read

Shadow Talk Update – 04.30.2018
April 30, 2018 | 2 Min Read

Shadow Talk Update – 04.23.2018
April 23, 2018 | 3 Min Read

Shadow Talk Update – 04.16.2018
April 16, 2018 | 5 Min Read

Shadow Talk Update – 04.09.2018
April 9, 2018 | 4 Min Read

Genesis Botnet: The Market Claiming to Sell Bots That Bypass Fingerprinting Controls
April 3, 2018 | 4 Min Read

Shadow Talk Update – 03.26.2018
March 26, 2018 | 4 Min Read

Pop-up Twitter Bots: The Shift to Opportunistic Targeting
March 22, 2018 | 4 Min Read

Shadow Talk Update – 03.19.2018
March 19, 2018 | 5 Min Read

Shadow Talk Update – 03.12.2018
March 12, 2018 | 3 Min Read

Shadow Talk Update – 03.05.2018
March 5, 2018 | 3 Min Read

Shadow Talk Update – 02.26.2018
February 26, 2018 | 3 Min Read

Shadow Talk Update – 02.19.2018
February 19, 2018 | 3 Min Read

Infraud Forum Indictment and Arrests: What it Means
February 15, 2018 | 7 Min Read

Shadow Talk Update – 12.02.2018
February 12, 2018 | 4 Min Read

2017 Android malware in review: 4 key takeaways
February 8, 2018 | 4 Min Read

Phishing for Gold: Threats to the 2018 Winter Games
February 6, 2018 | 7 Min Read

Shadow Talk Update – 02.05.2018
February 5, 2018 | 3 Min Read

Shadow Talk Update – 01.29.2018
January 29, 2018 | 4 Min Read

OL1MP: A Telegram Bot Making Carding Made Easy This Holiday Season
December 21, 2017 | 3 Min Read

Risks to Retail: Cybercriminals Sharing the Joy This Holiday Season
November 21, 2017 | 3 Min Read

Extorters Going to Extort: This Time Other Criminals Are the Victims
October 26, 2017 | 3 Min Read

Key Reinstallation Attacks (KRACK): The Impact So Far
October 16, 2017 | 4 Min Read

Simple Steps to Online Safety
October 5, 2017 | 4 Min Read

2017 Equifax Breach: Impact and Lessons Learned
September 28, 2017 | 3 Min Read

An Update on the Equifax Data Breach
September 13, 2017 | 8 Min Read

Fluctuation in the Exploit Kit Market – Temporary Blip or Long-Term Trend?
August 16, 2017 | 5 Min Read

All That Twitterz Is Not Gold: Why You Need to Rely on Multiple Sources of Intelligence
August 9, 2017 | 3 Min Read

Reading Your Texts For Fun and Profit – How Criminals Subvert SMS-Based MFA
August 1, 2017 | 4 Min Read

What is a Threat Model, and Why Organizations Should Care
July 31, 2017 | 4 Min Read

The Future of Marketplaces: Forecasting the Decentralized Model
July 17, 2017 | 4 Min Read

Petya-Like Wormable Malware: The “Who” and the “Why”
June 30, 2017 | 7 Min Read

Keep Your Eyes on the Prize: Attack Vectors are Important But Don’t Ignore Attacker Goals
June 23, 2017 | 5 Min Read

Threats From the Dark Web
June 26, 2017 | 5 Min Read

Authentication Nation: 5 Ways NIST is Changing How We Think About Passwords
May 9, 2017 | 4 Min Read

The Usual Suspects: Understanding the Nuances of Actors’ Motivations and Capabilities
April 21, 2017 | 3 Min Read

All Sources Are Not the Same; Why Diversity Is Good for Intelligence
April 11, 2017 | 3 Min Read

Monitoring the Mobile Threat Landscape
April 4, 2017 | 4 Min Read

OpIsrael Hacktivists Targeted By Unknown Threat Actor
March 30, 2017 | 3 Min Read

Tax Fraud in 2017
March 27, 2017 | 4 Min Read

New “Blaze” exploit kit claims to exploit recent Cisco WebEx vulnerability
March 2, 2017 | 4 Min Read

Sun to Set on BEPS/Sundown Exploit Kit?
February 22, 2017 | 4 Min Read

Four Things to Look Out for This Valentine’s Day
February 14, 2017 | 4 Min Read

An unusually Swift(tay) malware delivery tactic
February 9, 2017 | 5 Min Read

How the Frenzy Unfolded: Analyzing Various Mongo Extortion Campaigns
February 7, 2017 | 4 Min Read

Dial “M” for malware: Two-factor scamming
January 26, 2017 | 4 Min Read

Innovation in The Underworld: Reducing the Risk of Ripper Fraud
January 23, 2017 | 7 Min Read

The Top Three Most Popular Blogs of 2016
December 8, 2016 | 2 Min Read

A Model of Success: Anticipating Your Attackers’ Moves
December 1, 2016 | 4 Min Read

Five Tips For Better Email Security
November 8, 2016 | 4 Min Read

Anonymous Poland – Not Your Typical Hacktivist Group
October 28, 2016 | 4 Min Read

Combatting Online Crime With “Needle-Rich Haystacks”
October 18, 2016 | 3 Min Read

Balancing the Scales: The PRC’s Shift to Symmetrical Engagement
October 6, 2016 | 4 Min Read

Plumbing the Depths: the Telnet protocol
October 3, 2016 | 4 Min Read

Three easy tips to staying safe online
September 19, 2016 | 4 Min Read

Hybrid cyber/physical criminal operations – where network intrusions meet the physical world
August 30, 2016 | 3 Min Read

Four Things We’ve Learned From the Alleged Equation Group Code Leak
August 22, 2016 | 4 Min Read

“Air cover” – cybercriminal marketing and the media
August 10, 2016 | 3 Min Read

Overexposure – photos as the missing link
August 3, 2016 | 3 Min Read

More Data Leaks as part of OpOlympicHacking
July 28, 2016 | 2 Min Read

Thedarkoverlord – losing his patients?
July 26, 2016 | 4 Min Read

Recycling, bad for your environment!
June 27, 2016 | 4 Min Read

OPSEC versus branding – the cyber criminal’s dilemma
June 17, 2016 | 3 Min Read

“Hidden” TeamViewer service advertised on criminal forum
June 17, 2016 | 5 Min Read

Dark web: More than just a bastion of criminality
March 31, 2016 | 3 Min Read

Online credit card shops – a numbers game
March 21, 2016 | 3 Min Read

From cyber espionage to hacker marketing strategies: an overview of Digital Shadows talks at RSA Conference
February 25, 2016 | 2 Min Read

Why Go Through the Trouble to Tumble?
February 17, 2016 | 3 Min Read

Surviving the threats posed by PoS malware
February 2, 2016 | 3 Min Read

“Largest cyber attack” on Israel lacks power
February 1, 2016 | 3 Min Read

Escalation in OpKillingBay
January 25, 2016 | 3 Min Read

Criminal services – Bulletproof hosting
January 21, 2016 | 2 Min Read

DD4BC Arrests: What Now for Extortion?
January 15, 2016 | 3 Min Read

RATs: Invasion of Your Privacy
January 11, 2016 | 2 Min Read

Digital Currency and Getting Paid In The Underground
January 6, 2016 | 3 Min Read

Criminal Services – Crypting
December 18, 2015 | 3 Min Read

‘Hacker Buba’: Failed extortion, what next?
December 11, 2015 | 2 Min Read

Criminal Services – Counter Antivirus Services
November 30, 2015 | 4 Min Read

The Way of Hacking
November 10, 2015 | 3 Min Read

Emerging Markets: Online Extortion Matures via DDoS Attacks
November 9, 2015 | 5 Min Read

Crackas With Attitude strike again?
October 28, 2015 | 2 Min Read

TalkTalk: Avoiding The Hype
October 28, 2015 | 4 Min Read

How the Internet of Things (IoT) is Expanding Your Digital Shadow
September 9, 2015 | 2 Min Read

OPSEC and Trust In An Underground Cybercriminal Forum
September 9, 2015 | 4 Min Read

Digital Shadows Invited To 10 Downing Street
September 8, 2015 | 2 Min Read

Working In Multilingual Sources
September 8, 2015 | 5 Min Read

Digital Shadows joins roundtable at 10 Downing Street
September 8, 2015 | 1 Min Read

Remote working at Digital Shadows
September 8, 2015 | 6 Min Read

The Adult Friend Finder Breach: A Recap
September 7, 2015 | 5 Min Read

Saudi Arabia MOFA Breach
September 7, 2015 | 5 Min Read

Kaspersky Labs Discloses Duqu 2.0 Attack
September 7, 2015 | 4 Min Read

Digital Shadows Integrates With Maltego Through Partnership With Malformity Labs
September 7, 2015 | 4 Min Read

What’s In a Name? The Mystery Surrounding the Identity of the Actors Responsible for the Saudi Arabia Breaches
September 7, 2015 | 6 Min Read

Online Extortion – Old Ways, New Tricks
September 7, 2015 | 6 Min Read

Digital Shadows and ThreatConnect Partner to Help Customers Improve Security Defenses
September 4, 2015 | 2 Min Read

Exploiting Is My Business…and Business Is Good
September 4, 2015 | 8 Min Read