Skip to content
Bulwark
Black
Threat Intel
Russian CTI
Chinese CTI
North Korean CTI
Iranian CTI
Global / Anomalous
Malware
Threat-Actor Profiles
Security
Defensive Security
Offensive Security
Detection
Red Teaming
Bug Bounty
Topics
AI
Privacy & Security
Operational Technology
Research Papers
Training / Projects
Blog
Work With Us
Services
Apps
About
Contact
Donations
Threat Intel →
Work with us →
Threat Intel
All Threat Intel →
Russian CTI
Chinese CTI
North Korean CTI
Iranian CTI
Global / Anomalous
Malware
Threat-Actor Profiles
Security
All Security →
Defensive Security
Offensive Security
Detection
Red Teaming
Bug Bounty
Topics
All Topics →
AI
Privacy & Security
Operational Technology
Research Papers
Training / Projects
Blog
Work With Us
All Work With Us →
Services
Apps
About
Contact
Donations
Work with us →
Latest
Ghost Phishing Shows Why Email Security Must Follow the Browser
Pakistani Police Intrusions Show Why Public-Sector Data Systems Are Strategic Targets
Bad Epoll Shows Linux Kernel LPEs Belong in the Patch Priority Queue
Fake Payment SDKs Show Why Dependency Risk Is Credential Risk
Critical UniFi Flaws Put Network Control Planes Back in the Patch Queue
Vidar Stealer Campaign Shows Why File Size and Fake Signatures Still Beat Weak Controls
ADFS Signing Keys Show Why Federation Servers Are Tier-Zero Identity Infrastructure
UAT-7810 Shows Edge Devices Are Becoming China-Nexus Relay Infrastructure
FortiBleed Shows Firewall Credentials Are Ransomware Fuel
NetNut and Popa Takedown Shows Residential Proxies Are Now Attack Infrastructure
Vect and TeamPCP Show Supply-Chain Credentials Are Ransomware Fuel
Ousaban Shows Banking Trojans Are Learning to Hide From Sandboxes
NUT upsmon Command Injection Shows UPS Monitoring Belongs in the Patch Queue
ARToken Shows Microsoft 365 Tokens Are the New BEC Control Plane
Ghost Phishing Shows Why Email Security Must Follow the Browser
Pakistani Police Intrusions Show Why Public-Sector Data Systems Are Strategic Targets
Bad Epoll Shows Linux Kernel LPEs Belong in the Patch Priority Queue
Fake Payment SDKs Show Why Dependency Risk Is Credential Risk
Critical UniFi Flaws Put Network Control Planes Back in the Patch Queue
Vidar Stealer Campaign Shows Why File Size and Fake Signatures Still Beat Weak Controls
ADFS Signing Keys Show Why Federation Servers Are Tier-Zero Identity Infrastructure
UAT-7810 Shows Edge Devices Are Becoming China-Nexus Relay Infrastructure
FortiBleed Shows Firewall Credentials Are Ransomware Fuel
NetNut and Popa Takedown Shows Residential Proxies Are Now Attack Infrastructure
Vect and TeamPCP Show Supply-Chain Credentials Are Ransomware Fuel
Ousaban Shows Banking Trojans Are Learning to Hide From Sandboxes
NUT upsmon Command Injection Shows UPS Monitoring Belongs in the Patch Queue
ARToken Shows Microsoft 365 Tokens Are the New BEC Control Plane
Bulwark Black
Research Papers
Coming Soon