Cyber Threat Intelligence
Threat Reports
Explore the latest cyber threat reports published by threat researchers and government agencies.
APT41 likely compromised Taiwanese government-affiliated research institute with ShadowPad and Cobalt Strike
This blog post by researchers at Cisco Talos outlines a malicious campaign which they identified targeting a government affiliated research ...
Onyx Sleet uses array of malware to gather intelligence for North Korea
Following an indictment by the US Department of Justice linked to the intrusion set Microsoft track as Onyx Sleet, this report includes details of ...
APT45: North Korea’s Digital Military Machine
This report from threat intelligence analysts at Google's Mandiant marks the graduation of this cyber actor to a fully designated APT - APT45. The ...
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs
This cybersecurity advisory from the U.S. Federal Bureau of Investigation (FBI) and its partners, highlights the cyber espionage activities of the ...
Cyber Incidents
Explore cyber incidents which have been reported publicly.
2016 cyber attack against power transmission in Ukraine
2016-12-17
Operation ShadowHammer Supply Chain Incident
2019-01-31
2015 cyber attack against power distribution in Ukraine
2015-12-23
Summer 2023 Microsoft Exchange Online Intrusion
2023-05-15
Intrusion Sets
Understand the tactics, techniques and procedures (TTPs) of cyber adversaries operating in the wild.
Night Dragon
Night Dragon is a threat identified by McAfee in 2011 and reported as being active since at least 2009. McAfee describe the associated activity as ...
Operator Panda
OPERATOR PANDA is an intrusion set tracked by CrowdStrike since November 2024 which shows overlap with the group known as Salt Typhoon ...
Earth Estries
Earth Estries is a Chinese advanced persistent threat (APT) group tracked by Trend Micro. The group has been observed actively targeting critical ...
GhostEmperor
GhostEmperor is an advanced attacker originally identified by researchers from Kaspersky in 2021. The group has been observed using advanced ...
Threat Actors
Understand the tactics, techniques and procedures (TTPs) of real-world cyber threat actors.
North Korean Reconnaissance General Bureau 3rd Bureau
North Korea's Reconnaissance General Bureau (RGB) 3rd Bureau is reported by the FBI and other international agencies as an entity based in ...
Hainan Xiandun Technology Development Company
According to the US Department of Justice, Hainan Xiandun Technology Development Co. Ltd (Hainan Xiandun) was established as a front company by ...
People’s Liberation Army (PLA) Unit 69010
According to analysis by Recorded Future, Unit 69010 is likely the Military Unit Cover Designator (MUCD) for a Technical Reconnaissance Bureau ...
Hainan State Security Department
According to the US Department of Justice, Hainan State Security Department (HSSD) is a provincial arm of China’s Ministry of State Security ...
Exploited Vulnerabilities
Explore vulnerabilities which have been exploited 'in the wild'.