Digital Shadows helps a security manager of a large technology company find that 5,000 employee pay stubs were publicly available online.
Other content in this Stream
Legal firms can be attractive targets for cybercriminals. This is especially true for those firms working on mergers and acquisitions, where they possess a lot of sensitive, non-public information.
Digital Shadows helped a regional law firm discover key employee details exposed online for its Chief Counsel - including family names and home addresses.
we detected over 550 typosquats for the 34 candidate- and election-related domains we gathered from open-source research. Not every single one was something interesting; most of the time the typosquat
This blog seeks to rebalance intelligence tradecraft discussions by highlighting some of the less glamorous everyday sources of bias that are too often overlooked.
We took a deep-dive into the cybercriminal underground to investigate the persistence of forums, uncovering several reasons they remain attractive amid appealing alternatives.
“Lazarus Group” has been linked to a new trojanized Mac OS X application, demonstrating the threat group’s preference for employing OS X malware over the past two years.
29:00It seems like we read about new breaches every day. What’s changing? How is exposure and the adoption of digital technology changing the breach landscape? We have a special two-part series where Rick
Alex, Harrison, Kacey, and Charles chat this week on some dark web and cybercriminal updates, data leakage stories that have hit the news, plus a GDPR story where an ISP was hit with a €9.6...
Welcome to our deep dive on threat intelligence: intended to help security professionals embarking on creating and building a ...
Part 2 looks at cybercriminal forum users’ resistance to moving away from the forum model.
The survival of the cybercriminal forum in the face of new, more secure technologies and constant pressure from law enforcement does not come as a surprise to researchers at Digital Shadows.
When the attacker, Andrei Tyurin, pleaded guilty, we thought we could look at the attacker goals, their TTPs and map this to the Mitre PRE-ATT&CK and ATT&CK framework.
We’re all familiar with forums and marketplaces (we use them in our daily lives – think Reddit, eBay, or Amazon, for example), but what exactly is an AVC? What do they look like?
One of the most interesting aspects of transitioning from high school history teacher to cyber threat intelligence professional is the ...
10:00Photon Research Team thought it would be interesting to use this pool of candidates as a backdrop for research into typosquatted domains
Last week, we learned that millions of Ecuadorian’s personal details had been exposed by a misconfigured ElasticSearch database. This is ...
