Blogs by Topic
Cyber Espionage & Data Exfiltration Attack Results from 3-Year Old Backdoor
Executive Summary This report is an overview of live espionage and data exfiltration resulting from a previously unknown backdoor that flew under the radar for over 3 years. The weapon?...
Read MoreNew NOBELIUM Campaign Focuses on Phishing
Executive Summary This report is about a new malware campaign by a foreign adversarial nation-state threat actor recently being referred to as NOBELIUM. The threat actor has gained prominence for...
Read More
Flash Notice: VMware Discloses Critical vCenter Server Vulnerabilities – PATCH IMMEDIATELY
Overview Details: On May 25, 2021, VMware released a new critical security advisory, VMSA-2021-0010 (CVE-2021-21985 & CVE-2021-21986), affecting vCenter Server 6.5, 6.7, and 7.0. These vulnerabilities could allow a malicious actor to gain access...
Read MoreExamining the Relationship Between Vulnerability Announcements & the Increase in Attacks Until Mitigated
Overview of TIR-20210524 This report discusses the relationship between the time a new vulnerability is announced and the increase in observed attacks against the vulnerability until it can be patched....
Read More
You’re Secure – But are Your Vendors? Assessing Third Party Risk
This post was guest-written in partnership with Avertium by Bob Maley, CSO at Black Kite. Foreword: Bob Maley on The Left / Right of Bang Approach As Chief Security Officer...
Read MoreMalware Campaign Utilizes Microsoft Executable MSBuild
Overview of TIR-20210516 This report is about a malware campaign using a well-known Microsoft executable called MSBuild to propagate in a file-less manner. The type of malicious software being used...
Read More