Digital Shadows Analyst Team
ShadowTalk Update: CISA Security Advisory, IObit Attack, and more SolarWinds!
January 25, 2021 | 2 Min Read
ShadowTalk Update: Sunburst, Sunspot, and more on SolarWinds!
January 18, 2021 | 3 Min Read
ShadowTalk Update: SolarWinds Updates, TicketMaster Fraud, Apex Cyber Attack, and More!
January 11, 2021 | 2 Min Read
ShadowTalk Update: Egregor Ransomware, IoT Regulations, Black Friday Threats and More!
November 30, 2020 | 2 Min Read
ShadowTalk Update: RegretLocker, OceanLotus, Millions Seized in Cryptocurrency, and more!
November 16, 2020 | 2 Min Read
ShadowTalk Update – Law Enforcement Cracks Down On Cybercriminals, Fancy Bear Goes Phishing, And More
September 28, 2020 | 2 Min Read
ShadowTalk Update – Ed Merrett Joins To Talk HackableYou And The Latest In Threat Intel
September 21, 2020 | 2 Min Read
ShadowTalk Update – The Team Talks Baka, Epic Manchego, and Smaug, Plus Emotet Rides Again
September 14, 2020 | 2 Min Read
ShadowTalk Update – New Zealand Stock Exchange faces DDoS, Tesla avoids cyberattack, and Pioneer Kitten updates
September 7, 2020 | 2 Min Read
ShadowTalk Update – Emotet Gets a Vaccine, NSA Drovorub Advisory, and North Korean Activity plus Bureau 121
August 24, 2020 | 3 Min Read
ShadowTalk Update – Defaced Subreddits, Intel Leak Drama on Twitter, and HIBP Goes Open-Source
August 17, 2020 | 2 Min Read
ShadowTalk Update – CWT pays ransom, data leaked for 900+ Pulse Secure Servers, EU issues first cyber sanctions
August 10, 2020 | 2 Min Read
ShadowTalk Update – Garmin ransomware attack, QSnatch malware, and ShinyHunters Stage 2
August 3, 2020 | 3 Min Read
ShadowTalk Update – Torigon, Nulledflix, and BlueLeaks, Plus DevSecOps Insights From DS CISO Rick
June 29, 2020 | 2 Min Read
ShadowTalk Update – Maze Ransomware Alliance, EndGame DDoS Protection Tool, And Ransomware Disguises
June 15, 2020 | 2 Min Read
ShadowTalk Update – Microsoft Teams ATO Vulnerability, APT32, & Uptick In Ransomware
May 1, 2020 | 3 Min Read
ShadowTalk Update – SFO Airport Hack, Fin6, And Sodinokibi Switching From Bitcoin To Monero
April 20, 2020 | 2 Min Read
ShadowTalk Update – COVID-19 Third Party App Risks, Zoom, and DarkHotel Hackers
April 13, 2020 | 3 Min Read
ShadowTalk Update – Zoom Zero-Day Vulnerabilities and Fin7 Delivering Malware Via Snail Mail
April 6, 2020 | 2 Min Read
ShadowTalk Update – Remote Worker Threat Model And Cybercrime Updates
March 30, 2020 | 2 Min Read
ShadowTalk Update – Slack Vulnerability, Apollon Dark Web Exit Scam, And Online Brand Protection
March 23, 2020 | 3 Min Read
ShadowTalk Update – Necurs Botnet, SMB Vulnerability, Coronavirus Scams, And Dark Web Updates
March 16, 2020 | 2 Min Read
ShadowTalk Update – Data Breaches, Stalkerware, and Dopplepaymer ransomware
March 2, 2020 | 2 Min Read
ShadowTalk Update – OurMine hacks FC Barcelona & Olympics twitter handles, Adsense email extortion, & phishing research
February 24, 2020 | 2 Min Read
ShadowTalk Update – OurMine Hacks, Equifax Indictment, and SWIFT POC attack
February 17, 2020 | 2 Min Read
ShadowTalk Update – CTI Frameworks, Wawa Breach Updates, APT34, and Coronavirus Phishing Scams
February 10, 2020 | 3 Min Read
ShadowTalk Update – SANS CTI Summit, Snake Ransomware, CacheOut, and Citrix Vuln Update
February 3, 2020 | 3 Min Read
ShadowTalk Update – Citrix Vulnerability, Microsoft Data Breach, and Telnet Credentials Published
January 27, 2020 | 3 Min Read
ShadowTalk Update – NSA Vulnerability Disclosure, Ransomware News, and Iran Updates
January 20, 2020 | 3 Min Read
Third Party Risk: 4 ways to manage your security ecosystem
January 16, 2020 | 5 Min Read
ShadowTalk Update – Iranian Cyber Threats, Travelex Ransomware Attack, and Exploit Forum updates
January 10, 2020 | 3 Min Read
ShadowTalk Update – Jingle Bell Ryuk: NOLA Ransomware, Ring Doorbells, and 2020 Predictions
December 23, 2019 | 3 Min Read
ShadowTalk Update – Tochka Dark Web Market Offline, Market.ms Closes, and Data Leakage Stories
December 16, 2019 | 3 Min Read
Threat Intelligence: A Deep Dive
December 12, 2019 | 21 Min Read
ShadowTalk Update – Cybercriminal Forum Research, Mixcloud Breach, and International Crackdown on RAT Spyware
December 9, 2019 | 3 Min Read
ShadowTalk Update – RIPlace, Trickbot, and Russian-language forum Probiv
December 2, 2019 | 3 Min Read
ShadowTalk Update – Black Friday Deals on the Dark Web, Phineas Fisher Manifesto, and DarkMarket
November 25, 2019 | 3 Min Read
ShadowTalk Update – BSidesDFW Recap, Dynamic CVV Analysis, and the Facebook Camera Bug
November 18, 2019 | 3 Min Read
ShadowTalk Update – BlueKeep Attacks, Megacortex Ransomware, and Web.com Breach
November 11, 2019 | 3 Min Read
ShadowTalk Update – Avast Breach Attempt, NordVPN Breach, and Wifi Security Risks
November 4, 2019 | 4 Min Read
ShadowTalk Update – Avast Breach Attempt, NordVPN Breach, and Wifi Security Risks
October 25, 2019 | 3 Min Read
ShadowTalk Update – Typosquatting and the 2020 U.S. Election, Honeypots, And Sudo Vulnerability
October 18, 2019 | 3 Min Read
ShadowTalk Update – Iran-linked APT35, Skimming by Magecart 4, Rancour, and Emotet Resurgence
October 11, 2019 | 3 Min Read
ShadowTalk Update – Tortoiseshell Targets IT Providers, the Tyurin Indictment, and Emotet’s Return
September 27, 2019 | 4 Min Read
ShadowTalk Update – Metasploit Project Publishes Exploit For Bluekeep, plus APT3 and Silence Cybercrime Group Updates
September 13, 2019 | 4 Min Read
ShadowTalk Update – Ryuk Ransomware, Twitter rids SMS tweets, and Facebook Records Exposed
September 9, 2019 | 3 Min Read
Envoy on a Mission to Bring Stability to the Criminal Underground
September 4, 2019 | 3 Min Read
ShadowTalk Update – More Sodinokibi Activity, Imperva Breach, and Weirdest Food at the Texas State Fair
September 2, 2019 | 3 Min Read
ShadowTalk Update – Texas Ransomware Outbreaks and Phishing Attacks Using Custom 404 pages
August 23, 2019 | 3 Min Read
ShadowTalk Update – More BlueKeep updates, FSB contractor hacked, and the Enigma Market
July 29, 2019 | 3 Min Read
A Growing Enigma: New AVC on the Block
July 19, 2019 | 3 Min Read
ShadowTalk Update – XMRig Cryptocurrency Mining, FIN8 Backdoor, and Attacks Against Office 365
June 17, 2019 | 3 Min Read
ShadowTalk Update – 5.06.19
May 13, 2019 | 4 Min Read
ShadowTalk Update – 5.06.19
May 6, 2019 | 3 Min Read
ShadowTalk Update – 4.29.19
April 29, 2019 | 3 Min Read
ShadowTalk Update – 4.22.19
April 22, 2019 | 3 Min Read
ShadowTalk Update – 4.15.19
April 15, 2019 | 4 Min Read
ShadowTalk Update – 4.8.19
April 8, 2019 | 3 Min Read
ShadowTalk Update – 4.1.19
March 29, 2019 | 3 Min Read
ShadowTalk Update – 3.25.19
March 25, 2019 | 4 Min Read
ShadowTalk Update – 3.18.19
March 18, 2019 | 3 Min Read
ShadowTalk Update – 3.11.19
March 11, 2019 | 3 Min Read
ShadowTalk Update – 3.04.19
March 4, 2019 | 4 Min Read
ShadowTalk Update – 2.25.19
February 25, 2019 | 4 Min Read
ShadowTalk Update – 2.18.19
February 19, 2019 | 3 Min Read
ShadowTalk Update – 2.11.19
February 8, 2019 | 3 Min Read
ShadowTalk Update – 2.4.19
February 4, 2019 | 4 Min Read
ShadowTalk Update – 1.28.19
January 26, 2019 | 3 Min Read
ShadowTalk Update – 1.21.19
January 19, 2019 | 3 Min Read
Thedarkoverlord runs out of Steem
January 16, 2019 | 6 Min Read
ShadowTalk Update – 1.14.19
January 14, 2019 | 3 Min Read
ShadowTalk Update – 17.10.2018
December 17, 2018 | 3 Min Read
ShadowTalk Update – 12.10.2018
December 10, 2018 | 3 Min Read
ShadowTalk Update – 12.03.2018
December 3, 2018 | 3 Min Read
ShadowTalk Update – 11.26.2018
November 26, 2018 | 3 Min Read
ShadowTalk Update – 11.19.2018
November 19, 2018 | 2 Min Read
ShadowTalk Update – 11.12.2018
November 12, 2018 | 2 Min Read
ShadowTalk Update – 11.05.2018
November 5, 2018 | 3 Min Read
ShadowTalk Update – 10.29.2018
October 29, 2018 | 3 Min Read
ShadowTalk Update – 10.22.2018
October 22, 2018 | 3 Min Read
ShadowTalk Update – 10.15.2018
October 15, 2018 | 3 Min Read
ShadowTalk Update – 10.08.2018
October 8, 2018 | 3 Min Read
ShadowTalk Update – 10.01.2018
October 1, 2018 | 3 Min Read
ShadowTalk Update – 09.24.2018
September 24, 2018 | 3 Min Read
ShadowTalk Update – 09.17.2018
September 17, 2018 | 2 Min Read
ShadowTalk Update – 09.10.2018
September 10, 2018 | 3 Min Read
ShadowTalk Update – 09.03.2018
September 3, 2018 | 3 Min Read
ShadowTalk Update – 08.27.2018
August 27, 2018 | 3 Min Read
ShadowTalk Update – 08.20.2018
August 20, 2018 | 3 Min Read
ShadowTalk Update – 08.13.2018
August 13, 2018 | 3 Min Read
ShadowTalk Update – 08.06.2018
August 6, 2018 | 2 Min Read
FIN7: Arrests and Developments
August 2, 2018 | 6 Min Read
ShadowTalk Update – 07.30.2018
July 30, 2018 | 3 Min Read
ShadowTalk Update – 07.23.2018
July 23, 2018 | 3 Min Read
ShadowTalk Update – 07.16.2018
July 16, 2018 | 2 Min Read
ShadowTalk Update – 07.09.2018
July 9, 2018 | 3 Min Read
ShadowTalk Update – 07.02.2018
July 2, 2018 | 3 Min Read
ShadowTalk Update – 06.25.2018
June 25, 2018 | 3 Min Read
ShadowTalk Update – 06.18.2018
June 18, 2018 | 3 Min Read
Shadow Talk Update – 06.11.2018
June 11, 2018 | 3 Min Read
Shadow Talk Update – 06.04.2018
June 4, 2018 | 3 Min Read
Shadow Talk Update – 05.29.2018
May 29, 2018 | 4 Min Read
Security Analyst Spotlight Series: Rose Bernard
May 23, 2018 | 5 Min Read
Shadow Talk Update – 05.21.2018
May 21, 2018 | 3 Min Read
Shadow Talk Update – 05.14.2018
May 14, 2018 | 3 Min Read
Shadow Talk Update – 05.07.2018
May 7, 2018 | 3 Min Read
Shadow Talk Update – 04.30.2018
April 30, 2018 | 2 Min Read
Shadow Talk Update – 04.23.2018
April 23, 2018 | 3 Min Read
Shadow Talk Update – 04.16.2018
April 16, 2018 | 5 Min Read
Shadow Talk Update – 04.09.2018
April 9, 2018 | 4 Min Read
Genesis Botnet: The Market Claiming to Sell Bots That Bypass Fingerprinting Controls
April 3, 2018 | 4 Min Read
Shadow Talk Update – 03.26.2018
March 26, 2018 | 4 Min Read
Pop-up Twitter Bots: The Shift to Opportunistic Targeting
March 22, 2018 | 4 Min Read
Shadow Talk Update – 03.19.2018
March 19, 2018 | 5 Min Read
Shadow Talk Update – 03.12.2018
March 12, 2018 | 3 Min Read
Shadow Talk Update – 03.05.2018
March 5, 2018 | 3 Min Read
Shadow Talk Update – 02.26.2018
February 26, 2018 | 3 Min Read
Shadow Talk Update – 02.19.2018
February 19, 2018 | 3 Min Read
Infraud Forum Indictment and Arrests: What it Means
February 15, 2018 | 7 Min Read
Shadow Talk Update – 12.02.2018
February 12, 2018 | 4 Min Read
2017 Android malware in review: 4 key takeaways
February 8, 2018 | 4 Min Read
Phishing for Gold: Threats to the 2018 Winter Games
February 6, 2018 | 7 Min Read
Shadow Talk Update – 02.05.2018
February 5, 2018 | 3 Min Read
Shadow Talk Update – 01.29.2018
January 29, 2018 | 4 Min Read
OL1MP: A Telegram Bot Making Carding Made Easy This Holiday Season
December 21, 2017 | 3 Min Read
Risks to Retail: Cybercriminals Sharing the Joy This Holiday Season
November 21, 2017 | 3 Min Read
Extorters Going to Extort: This Time Other Criminals Are the Victims
October 26, 2017 | 3 Min Read
Key Reinstallation Attacks (KRACK): The Impact So Far
October 16, 2017 | 4 Min Read
Simple Steps to Online Safety
October 5, 2017 | 4 Min Read
2017 Equifax Breach: Impact and Lessons Learned
September 28, 2017 | 3 Min Read
An Update on the Equifax Data Breach
September 13, 2017 | 8 Min Read
Fluctuation in the Exploit Kit Market – Temporary Blip or Long-Term Trend?
August 16, 2017 | 5 Min Read
All That Twitterz Is Not Gold: Why You Need to Rely on Multiple Sources of Intelligence
August 9, 2017 | 3 Min Read
Reading Your Texts For Fun and Profit – How Criminals Subvert SMS-Based MFA
August 1, 2017 | 4 Min Read
What is a Threat Model, and Why Organizations Should Care
July 31, 2017 | 4 Min Read
The Future of Marketplaces: Forecasting the Decentralized Model
July 17, 2017 | 4 Min Read
Petya-Like Wormable Malware: The “Who” and the “Why”
June 30, 2017 | 7 Min Read
Keep Your Eyes on the Prize: Attack Vectors are Important But Don’t Ignore Attacker Goals
June 23, 2017 | 5 Min Read
Threats From the Dark Web
June 26, 2017 | 5 Min Read
Authentication Nation: 5 Ways NIST is Changing How We Think About Passwords
May 9, 2017 | 4 Min Read
The Usual Suspects: Understanding the Nuances of Actors’ Motivations and Capabilities
April 21, 2017 | 3 Min Read
All Sources Are Not the Same; Why Diversity Is Good for Intelligence
April 11, 2017 | 3 Min Read
Monitoring the Mobile Threat Landscape
April 4, 2017 | 4 Min Read
OpIsrael Hacktivists Targeted By Unknown Threat Actor
March 30, 2017 | 3 Min Read
Tax Fraud in 2017
March 27, 2017 | 4 Min Read
New “Blaze” exploit kit claims to exploit recent Cisco WebEx vulnerability
March 2, 2017 | 4 Min Read
Sun to Set on BEPS/Sundown Exploit Kit?
February 22, 2017 | 4 Min Read
Four Things to Look Out for This Valentine’s Day
February 14, 2017 | 4 Min Read
An unusually Swift(tay) malware delivery tactic
February 9, 2017 | 5 Min Read
How the Frenzy Unfolded: Analyzing Various Mongo Extortion Campaigns
February 7, 2017 | 4 Min Read
Dial “M” for malware: Two-factor scamming
January 26, 2017 | 4 Min Read
Innovation in The Underworld: Reducing the Risk of Ripper Fraud
January 23, 2017 | 7 Min Read
The Top Three Most Popular Blogs of 2016
December 8, 2016 | 2 Min Read
A Model of Success: Anticipating Your Attackers’ Moves
December 1, 2016 | 4 Min Read
Five Tips For Better Email Security
November 8, 2016 | 4 Min Read
Anonymous Poland – Not Your Typical Hacktivist Group
October 28, 2016 | 4 Min Read
Combatting Online Crime With “Needle-Rich Haystacks”
October 18, 2016 | 3 Min Read
Balancing the Scales: The PRC’s Shift to Symmetrical Engagement
October 6, 2016 | 4 Min Read
Plumbing the Depths: the Telnet protocol
October 3, 2016 | 4 Min Read
Three easy tips to staying safe online
September 19, 2016 | 4 Min Read
Hybrid cyber/physical criminal operations – where network intrusions meet the physical world
August 30, 2016 | 3 Min Read
Four Things We’ve Learned From the Alleged Equation Group Code Leak
August 22, 2016 | 4 Min Read
“Air cover” – cybercriminal marketing and the media
August 10, 2016 | 3 Min Read
Overexposure – photos as the missing link
August 3, 2016 | 3 Min Read
More Data Leaks as part of OpOlympicHacking
July 28, 2016 | 2 Min Read
Thedarkoverlord – losing his patients?
July 26, 2016 | 4 Min Read
Recycling, bad for your environment!
June 27, 2016 | 4 Min Read
OPSEC versus branding – the cyber criminal’s dilemma
June 17, 2016 | 3 Min Read
“Hidden” TeamViewer service advertised on criminal forum
June 17, 2016 | 5 Min Read
Dark web: More than just a bastion of criminality
March 31, 2016 | 3 Min Read
Online credit card shops – a numbers game
March 21, 2016 | 3 Min Read
From cyber espionage to hacker marketing strategies: an overview of Digital Shadows talks at RSA Conference
February 25, 2016 | 2 Min Read
Why Go Through the Trouble to Tumble?
February 17, 2016 | 3 Min Read
Surviving the threats posed by PoS malware
February 2, 2016 | 3 Min Read
“Largest cyber attack” on Israel lacks power
February 1, 2016 | 3 Min Read
Escalation in OpKillingBay
January 25, 2016 | 3 Min Read
Criminal services – Bulletproof hosting
January 21, 2016 | 2 Min Read
DD4BC Arrests: What Now for Extortion?
January 15, 2016 | 3 Min Read
RATs: Invasion of Your Privacy
January 11, 2016 | 2 Min Read
Digital Currency and Getting Paid In The Underground
January 6, 2016 | 3 Min Read
Criminal Services – Crypting
December 18, 2015 | 3 Min Read
‘Hacker Buba’: Failed extortion, what next?
December 11, 2015 | 2 Min Read
Criminal Services – Counter Antivirus Services
November 30, 2015 | 4 Min Read
The Way of Hacking
November 10, 2015 | 3 Min Read
Emerging Markets: Online Extortion Matures via DDoS Attacks
November 9, 2015 | 5 Min Read
Crackas With Attitude strike again?
October 28, 2015 | 2 Min Read
TalkTalk: Avoiding The Hype
October 28, 2015 | 4 Min Read
How the Internet of Things (IoT) is Expanding Your Digital Shadow
September 9, 2015 | 2 Min Read
OPSEC and Trust In An Underground Cybercriminal Forum
September 9, 2015 | 4 Min Read
Digital Shadows Invited To 10 Downing Street
September 8, 2015 | 2 Min Read
Working In Multilingual Sources
September 8, 2015 | 5 Min Read
Digital Shadows joins roundtable at 10 Downing Street
September 8, 2015 | 1 Min Read
Remote working at Digital Shadows
September 8, 2015 | 6 Min Read
The Adult Friend Finder Breach: A Recap
September 7, 2015 | 5 Min Read
Saudi Arabia MOFA Breach
September 7, 2015 | 5 Min Read
Kaspersky Labs Discloses Duqu 2.0 Attack
September 7, 2015 | 4 Min Read
Digital Shadows Integrates With Maltego Through Partnership With Malformity Labs
September 7, 2015 | 4 Min Read
What’s In a Name? The Mystery Surrounding the Identity of the Actors Responsible for the Saudi Arabia Breaches
September 7, 2015 | 6 Min Read
Online Extortion – Old Ways, New Tricks
September 7, 2015 | 6 Min Read
Digital Shadows and ThreatConnect Partner to Help Customers Improve Security Defenses
September 4, 2015 | 2 Min Read
Exploiting Is My Business…and Business Is Good
September 4, 2015 | 8 Min Read