Threat Intelligence

Understand threat actors, their behavior, and the assets they target.

  • Threat Intelligence: A Deep Dive

    Threat Intelligence: A Deep Dive

      Welcome to our deep dive on threat intelligence: intended to help security professionals embarking on creating and building a ...

    Read Post
  • ×

    3 Reasons the Cybercriminal Forum is
    NOT Dead

    - Dec 17th -
    Live Webinar

    First Name
    Last Name
    Company
    Job Title
    Country
    State
    2019 December Cybercriminal Forums Webinar
    Thank you!
    Error - something went wrong!
  • Threat Intelligence

    Threat Intelligence

    Understand threat actors, their behavior, and the assets they target.

    Read Report
  • Weekly Intelligence Summary 05 Dec - 12 Dec 2019

    Weekly Intelligence Summary 05 Dec - 12 Dec 2019

    “Lazarus Group” has been linked to a new trojanized Mac OS X application, demonstrating the threat group’s preference for employing OS X malware over the past two years.

    Read Report
  • Tochka Dark Web Market Offline, Market.ms Closes, And Data Leakage Stories

    Tochka Dark Web Market Offline, Market.ms Closes, And Data Leakage Stories

    Alex, Harrison, Kacey, and Charles chat this week on some dark web and cybercriminal updates, data leakage stories that have hit the news, plus a GDPR story where an ISP was hit with a €9.6...

    Read Post

  • Heard our ShadowTalk Threat Intelligence Podcast?

    Subscribe Here!
  • A Threat Intelligence Analyst’s Guide to Today’s Sources of Bias

    A Threat Intelligence Analyst’s Guide to Today’s Sources of Bias

    This blog seeks to rebalance intelligence tradecraft discussions by highlighting some of the less glamorous everyday sources of bias that are too often overlooked.

    Read Post
  • Forums are Forever – Part 1: Cybercrime Never Dies

    Forums are Forever – Part 1: Cybercrime Never Dies

    The survival of the cybercriminal forum in the face of new, more secure technologies and constant pressure from law enforcement does not come as a surprise to researchers at Digital Shadows.

    Read Post
  • The Modern Cybercriminal Forum

    The Modern Cybercriminal Forum

    We took a deep-dive into the cybercriminal underground to investigate the persistence of forums, uncovering several reasons they remain attractive amid appealing alternatives.

    Read Report
  • Forums are Forever – Part 2: Shaken, but not Stirred

    Forums are Forever – Part 2: Shaken, but not Stirred

    Part 2 looks at cybercriminal forum users’ resistance to moving away from the forum model.

    Read Post
  • Cybercriminal Forum Research, Mixcloud Breach, and International Crackdown On RAT Spyware

    Cybercriminal Forum Research, Mixcloud Breach, and International Crackdown On RAT Spyware

    New cybercrime research we put out on the Modern Cybercriminal Forum and how the rise of alternative technologies hasn’t spelled the end of forums, which seem to be prospering against all odds.

    Read Post
  • Black Friday Deals on the Dark Web: A cybercriminal shopper’s paradise

    Black Friday Deals on the Dark Web: A cybercriminal shopper’s paradise

    Criminals are conducting Black Friday sales amongst themselves, many of which are on the dark web.

    Read Post
  • Typosquatting and the 2020 U.S. Presidential election: Cyberspace as the new political battleground

    Typosquatting and the 2020 U.S. Presidential election: Cyberspace as the new political battleground

    we detected over 550 typosquats for the 34 candidate- and election-related domains we gathered from open-source research. Not every single one was something interesting; most of the time the typosquat

    Read Post
  • Dark Web Marketplace Trends 2019

    Dark Web Marketplace Trends 2019

    Our team of researchers recently dug into the different popular dark web marketplaces to understand which marketplaces are gaining the most traction and what is being sold on these cybercriminal platf

    Read Report
  • Probiv: The missing pieces to a cybercriminal’s puzzle

    Probiv: The missing pieces to a cybercriminal’s puzzle

    in the cybercriminal underground, there’s a service (and even a dedicated platform) that enables anyone to obtain sensitive information via insiders: Probiv.

    Read Post
  • Black Friday Deals On The Dark Web, Phineas Fisher Manifesto, And DarkMarket

    Black Friday Deals On The Dark Web, Phineas Fisher Manifesto, And DarkMarket

    Adam Cook and Viktoria Austin talk through the security and threat intelligence stories of this week including an update around Phineas Fisher, where the hacker offered up to $100k in what they...

    Read Post
  • DarkMarket’s Feminist Flight Towards Equality and the Curious Case of Canaries

    DarkMarket’s Feminist Flight Towards Equality and the Curious Case of Canaries

    DarkMarket, an English-speaking “boutique marketplace”, has taken two very noticeable approaches to these challenges, with claims to be the first female-run market, and the introduction of new trust m

    Read Post
  • Cybercriminal credit card stores: Is Brian out of the club?

    Cybercriminal credit card stores: Is Brian out of the club?

    In this blog, we determine whether this targeted attack on BriansClub will impact the wider cybercriminal credit carding landscape, and speculate whether it could galvanize the community to push anoth

    Read Post
  • Top Threat Intelligence Podcasts to Add to Your Playlist

    Top Threat Intelligence Podcasts to Add to Your Playlist

    Looking for some new threat intelligence podcasts to add to your playlist? Look no further! Our Photon Threat Intelligence Research team shares their top tracks.

    Read Post
  • BSidesDFW 2019: OSINT Workshop Recap

    BSidesDFW 2019: OSINT Workshop Recap

    A few Saturdays ago, we had the pleasure of presenting at BSidesDFW in Fort Worth, Texas. We were all OSINT all the time; we did one OSINT talk and three OSINT workshops at the conference.

    Read Post
  • Typosquatting and the 2020 U.S. Presidential election10:00

    Typosquatting and the 2020 U.S. Presidential election

    Photon Research Team thought it would be interesting to use this pool of candidates as a backdrop for research into typosquatted domains

    Watch Video
  • Understanding the Different Cybercriminal Platforms: AVCs, Marketplaces, and Forums

    Understanding the Different Cybercriminal Platforms: AVCs, Marketplaces, and Forums

    We’re all familiar with forums and marketplaces (we use them in our daily lives – think Reddit, eBay, or Amazon, for example), but what exactly is an AVC? What do they look like?

    Read Post
  • loading
    Loading More...