#threat-intelligence — Public Fediverse posts on home.social

HackerWorkspace @[email protected] · 2026-05-14 · 18:09 UTC

FrostyNeighbor: Fresh mischief and digital shenanigans

https://www.welivesecurity.com/en/eset-research/frostyneighbor-fresh-mischief-digital-shenanigans/

Read on HackerWorkspace: https://hackerworkspace.com/article/frostyneighbor-fresh-mischief-and-digital-shenanigans

#malware #threatintelligence #vulnerability

AA @[email protected] · 2026-05-14 · 16:42 UTC

New.

Microsoft: Kazuar: Anatomy of a nation-state botnet https://www.microsoft.com/en-us/security/blog/2026/05/14/kazuar-anatomy-of-a-nation-state-botnet/ #Microsoft #infosec #botnet #threatintel #threatintelligence #malware

#microsoft #infosec #botnet #threatintel #threatintelligence #malware

AA @[email protected] · 2026-05-14 · 16:37 UTC

New.

Infoblox: Lookalike Domains Expose the iPhone Theft Economy https://www.infoblox.com/blog/threat-intelligence/lookalike-domains-expose-the-iphone-theft-economy/ @InfobloxThreatIntel #infosec #Apple #cybercrime #threatintel #threatintelligence #iPhone

#infosec #apple #cybercrime #threatintel #threatintelligence #iphone

CTI.FYI @[email protected] · 2026-05-14 · 16:30 UTC

🚨New ransom group blog post!🚨

Group name: qilin
Post title: Schulte-Lindhorst GmbH & Co.
Info: https://cti.fyi/groups/qilin.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

CTI.FYI @[email protected] · 2026-05-14 · 12:29 UTC

🚨New ransom group blog post!🚨

Group name: qilin
Post title: Fab-Masters
Info: https://cti.fyi/groups/qilin.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

Infoblox Threat Intel @[email protected] · 2026-05-14 · 11:27 UTC

Stolen phones - and specifically iPhones - have robust anti-theft protections. They are worthless once they're flagged - locked to their owner. So why are millions still being stolen every year?
In this paper, we uncover a thriving underground marketplace focused on unlocking stolen phones. It is powered by:

Lookalike domains impersonating Apple, Xiaomi, Samsung and other brands
Smishing campaigns targeting device owners
Pay‑as‑you‑go “unlocking” tools sold on Telegram
By pivoting on DNS data, we identified 10,000+ malicious domains and a growing ecosystem turning locked devices into profit at scale.

👉 Read how this supply chain works—from theft to resale—and why it’s growing fast. https://www.infoblox.com/blog/threat-intelligence/lookalike-domains-expose-the-iphone-theft-economy/

#ThreatIntel #CyberSecurity #Phishing #MobileSecurity #iOS #Smishing #dns #threatintelligence #cybercrime #infosec #infoblox #infobloxthreatintel #threatintelligence #cybercrime #infosec #infoblox #infobloxthreatintel

#threatintel #cybersecurity #phishing #mobilesecurity #ios #smishing

Analyse Podcast @[email protected] · 2026-05-14 · 07:04 UTC

Why do security teams miss so much?

John Morgan points to the investigation layer: humans spend time correlating signals, and that’s where detections can slip through. AI can help across ingestion, correlation, investigation—and even some response.

Read/listen at https://youtube.com/shorts/opn9ImKi_Nw

#AnalysePodcast #CyberSecurity #ArtificialIntelligence #ThreatIntelligence

#threatintelligence #artificialintelligence #cybersecurity #analysepodcast

CTI.FYI @[email protected] · 2026-05-13 · 20:29 UTC

🚨New ransom group blog post!🚨

Group name: incransom
Post title: Silergy Corp
Info: https://cti.fyi/groups/incransom.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

CTI.FYI @[email protected] · 2026-05-13 · 20:27 UTC

🚨New ransom group blog posts!🚨

Group name: payoutsking
Post title: NTN Bearing Corporation of America
Info: https://cti.fyi/groups/payoutsking.html

Group name: dragonforce
Post title: Tricon Infotech
Info: https://cti.fyi/groups/dragonforce.html

Group name: dragonforce
Post title: Pamil Modulsystem
Info: https://cti.fyi/groups/dragonforce.html

Group name: dragonforce
Post title: MicroMarketing
Info: https://cti.fyi/groups/dragonforce.html

Group name: qilin
Post title: Bluize
Info: https://cti.fyi/groups/qilin.html

Group name: qilin
Post title: Mayer
Info: https://cti.fyi/groups/qilin.html

Group name: qilin
Post title: Spirit Medical Transport
Info: https://cti.fyi/groups/qilin.html

Group name: qilin
Post title: Domaine Des Tournels
Info: https://cti.fyi/groups/qilin.html

Group name: qilin
Post title: Johnson Carter Architects
Info: https://cti.fyi/groups/qilin.html

Group name: qilin
Post title: LTJ Industrial Services
Info: https://cti.fyi/groups/qilin.html

Group name: qilin
Post title: Brand X Hydrovac Services
Info: https://cti.fyi/groups/qilin.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

Laurent Cheylus @[email protected] · 2026-05-13 · 19:10 UTC

For the first time, Google Threat Intelligence Group has identified a Threat Actor using a Zero-Day Exploit that they believe was developed with AI #Infosec #ThreatIntelligence #AI https://cloud.google.com/blog/topics/threat-intelligence/ai-vulnerability-exploitation-initial-access

#infosec #threatintelligence #ai

HackerWorkspace @[email protected] · 2026-05-13 · 18:38 UTC

A Guide to LNK File Forensics

https://www.youtube.com/watch?v=S73Z7H0S1xQ

#cybersecurity #incidentresponse #threatintelligence

CTI.FYI @[email protected] · 2026-05-13 · 17:41 UTC

🚨New ransom group blog posts!🚨

Group name: qilin
Post title: John G Yphantides A Professional Law
Info: https://cti.fyi/groups/qilin.html

Group name: qilin
Post title: One Legal
Info: https://cti.fyi/groups/qilin.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

BGDon 🇨🇦 🇺🇸 👨‍💻 @[email protected] · 2026-05-13 · 17:24 UTC

Resulting from funding gaps and idiotic shifts in priorities the U.S.A. is now woefully under investing in our core CyberDefense Ecosystem....

National Institute of Standards and Technology (NIST) is no longer enhancing all Common Vulnerabilities and Exposures (CVEs) with analysis and severity indicators, and instead NIST will prioritize enriching a much narrower set of security vulnerabilities.

Related: In April 2025, a funding gap by in DHS appropriations threatened to cease CVE operations entirely —which would have creating systemic risk for global vulnerability management. An emergency funding extension was implemented to avoid a full on crisis. https://www.justsecurity.org/136914/nist-cant-keep-up/ #NIST #MITRE #CVEs #NVD #Security #Risk #CyberSecurity #CyberDefence #CyberInfrastructure #AI #AISecurity #CISA #DHS #Vulnerability #ThreatIntelligence

#nist #mitre #cves #nvd #security #risk

AA @[email protected] · 2026-05-13 · 16:30 UTC

New.

Check Point: Thus Spoke…The Gentlemen https://research.checkpoint.com/2026/thus-spoke-the-gentlemen/ #infosec #cybercrime #ransomware #threatintel #threatintelligence

#infosec #cybercrime #ransomware #threatintel #threatintelligence

CTI.FYI @[email protected] · 2026-05-13 · 14:37 UTC

🚨New ransom group blog posts!🚨

Group name: akira
Post title: Allele Diagnostics
Info: https://cti.fyi/groups/akira.html

Group name: akira
Post title: Institute of Private Enterprise Development
Info: https://cti.fyi/groups/akira.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

CTI.FYI @[email protected] · 2026-05-13 · 13:37 UTC

🚨New ransom group blog posts!🚨

Group name: payload
Post title: Inteceng.com.my (+ Tsksynergy.com.my + Amemanufacturing.com.my + Woodnova.com.my)
Info: https://cti.fyi/groups/payload.html

Group name: payload
Post title: Gorey Community School
Info: https://cti.fyi/groups/payload.html

#ransomware #cti #threatintelligence #cybersecurity #infosec