Contact us
Contact us
Previous search terms

    Threat Intelligence Advisories

    Real-time access to research-based visibility into cyber threats
    high quality illustration, banner with a close-up of an indian customer service rep wearing a headset, with an office workspace in the background, representing support service concept

    February 2025

    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    RedDelta – Advanced Cyber Espionage Using PlugX

    11 February 2025

    Download
    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    Lynx Ransomware – A Double Extortion Menace

    04 February 2025

    Download

    January 2025

    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    Lumma Stealer – Social Engineering Info Stealer

    28 January 2025

    Download
    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    Akira Ransomware – Targeting Global Enterprises

    21 January 2025

    Download
    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    Cloud Atlas – The Emergence of VBCloud Malware

    14 January 2025

    Download

    December 2024

    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    DragonRank Group - Disrupting IIS Servers and SEO Integrity

    23 December 2024

    Download
    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    Medusa Ransomware – Global Cyber Threat Exploiting Vulnerabilities

    17 December 2024

    Download
    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    SnipBot Malware – A New RomCom Malware Variant

    10 December 2024

    Download
    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    BianLian Ransomware: Shifting Tactics from Encryption to Data Extortion

    03 December 2024

    Download

    November 2024

    FOG Ransomware: The Silent Storm of Cybercrime

    RansomHub Ransomware: The RaaS Powerhouse Wreaking Havoc

    26 November 2024

    Download
    FOG Ransomware: The Silent Storm of Cybercrime

    FOG Ransomware: The Silent Storm of Cybercrime

    19 November 2024

    Download
    Evasive Panda - Unmasking China’s Geopolitical Cyber Spy

    Evasive Panda - Unmasking China’s Geopolitical Cyber Spy

    12 November 2024

    Download
    TA866 - Multi-Malware Menace

    TA866 - Multi-Malware Menace

    05 November 2024
     

    Download

    October 2024

    BlackCat Ransomware: Unleashing the Nitrogen Threat

    BlackCat Ransomware: Unleashing the Nitrogen Threat

    29 October 2024

    Download
    Kryptina Ransomware – Resurfaces with Mallox Variant Targeting Enterprises

    Kryptina Ransomware – Resurfaces with Mallox Variant Targeting Enterprises

    22 October 2024

    Download
    UNC1860 - A Deep Dive into Their Custom-Built Arsenal

    UNC1860 - A Deep Dive into Their Custom-Built Arsenal

    15 October 2024

    Download
    BunnyLoader 3.0 – Digging into Digital Havoc

    BunnyLoader 3.0 – Digging into Digital Havoc

    08 October 2024

    Download
    Sharp Dragon – Setting Ablaze Government Organizations

    Sharp Dragon – Setting Ablaze Government Organizations

    01 October 2024

    Read more

    September 2024

    Unit 29155 - GRU’s Shadows in Cyber Espionage

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more
    BlackSuit Ransomware - Rebranded Threat Targeting Enterprises Worldwide

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more
    PEAKLIGHT - Advanced Memory-Only Malware Targeting Windows

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more
    Noodle RAT - The Cross-Platform Menace

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more

    August 2024

    NJRAT - A Persistent Threat Affecting Critical Industries

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more
    ExCobalt Cyber Gang - Russian Entities Hit by GoRed Backdoor

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more
    SideWinder Group - Targeting Maritime Facilities Through Phishing Exploits

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more
    Andariel Group - North Korea's Advanced Cyber Warfare Tactics

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more
    Ransomware Hits C-EDGE - Payment Services Affected

    Cyber Threat Intelligence Advisory

    KPMG Cyber Threat Intelligence Advisory - weekly update by KPMG in India
    Read more

    July 2024

    DISGOMOJI - Evolving Techniques of Emoji Malware

    DISGOMOJI - Evolving Techniques of Emoji Malware

    Read more
    CrowdStrike Global Windows Outage : An Update on the State of Affairs

    CrowdStrike Global Windows Outage : An Update on the State of Affairs

    Read more
    CrowdStrike Causing Global Windows Outage

    CrowdStrike Causing Global Windows Outage

    Read more
    ChamelGang – The Shape-Shifting Cyber Menace

    ChamelGang – The Shape-Shifting Cyber Menace

    Read more
    Void Arachne - Infiltrating Chinese Users with Winos 4.0

    Void Arachne - Infiltrating Chinese Users with Winos 4.0

    Read more
    Sticky Werewolf – Expanding threats in the Aviation Sector

    Sticky Werewolf – Expanding threats in the Aviation Sector

    Read more

    June 2024

    ValleyRAT - Returns with Enhanced Capabilities

    ValleyRAT - Returns with Enhanced Capabilities

    Read more
    Grandoreiro Trojan – Unveiling the Banking Sector's Nemesis

    Grandoreiro Trojan – Unveiling the Banking Sector's Nemesis

    Read more
    Chalubo Malware – Exploiting Routers Across the Globe

    Chalubo Malware – Exploiting Routers Across the Globe

    Read more
    Unfading Sea Haze – Maneuvers Across the South China Sea

    Unfading Sea Haze – Maneuvers Across the South China Sea

    Read more

    May 2024

    Cuttlefish Malware – Exploiting Routers and Sniffing Cloud Credentials

    Cuttlefish Malware – Exploiting Routers and Sniffing Cloud Credentials

    Read more
    CR4T Malware - Targeting Government Entities in the Middle East

    CR4T Malware - Targeting Government Entities in the Middle East

    Read more
    Goldoon Botnet – Exploiting Vulnerabilities in D-Link Devices

    Goldoon Botnet – Exploiting Vulnerabilities in D-Link Devices

    Read more
    TimbreStealer - Mexico’s Cyber Users Under Threat

    TimbreStealer - Mexico’s Cyber Users Under Threat

    Read more

    April 2024

    Raspberry Robin – Resurged with Advanced Evasion Tactics

    Raspberry Robin – Resurged with Advanced Evasion Tactics

    Read more
    StrelaStealer – Back with Revamped Tactics

    StrelaStealer – Back with Revamped Tactics

    Read more
    CoralRaider - Pilfering Financial Data Across Asia

    CoralRaider - Pilfering Financial Data Across Asia

    Read more
    8220 Gang - Unleashing Crypto Chaos on Windows and Linux

    8220 Gang - Unleashing Crypto Chaos on Windows and Linux

    Read more
    Smokeloader Malware - Targeting Ukrainian Institutions

    Smokeloader Malware - Targeting Ukrainian Institutions

    Read more

    March 2024

    RedCurl - Exploiting Mail Transfer Service and PCA

    RedCurl - Exploiting Mail Transfer Service and PCA

    Read more
    UNC1549 - Iran's Cyber Intrusion into Aerospace and Defense

    UNC1549 - Iran's Cyber Intrusion into Aerospace and Defense

    Read more
    Phobos Ransamwore - A Threat to Critical Infrastructure

    Phobos Ransamwore - A Threat to Critical Infrastructure

    Read more
    Water Hydra APT - Infiltrating the Financial Sector

    Water Hydra APT - Infiltrating the Financial Sector

    Read more

    February 2024

    APT28 - Unveiling Russia's GRU Cyber Tactics

    APT28 - Unveiling Russia's GRU Cyber Tactics

    Read more
    NS Stealer : Leveraging Discord for Data Exfiltration

    NS Stealer : Leveraging Discord for Data Exfiltration

    Read more
    Zloader - Targeting Windows Users with Revamped Tactics

    Zloader - Targeting Windows Users with Revamped Tactics

    Read more
    Remcos RAT - A Deceptive Remote Access Threat

    Remcos RAT - A Deceptive Remote Access Threat

    Read more

    January 2024

    SugarGh0st Malware – Twin Infection Chains Revealed

    SugarGh0st Malware – Twin Infection Chains Revealed

    Read more
    Pikabot Malware – The Multilayer Trojan Spreading Through Malspam

    Pikabot Malware – The Multilayer Trojan Spreading Through Malspam

    Read more
    Alphv/BlackCat – A Formidable Cross Platform Adversary

    Alphv/BlackCat – A Formidable Cross Platform Adversary

    Read more

    December 2023

    PicassoLoader Malware – Concealed Threats In Image Files

    PicassoLoader Malware – Concealed Threats In Image Files

    Read more
    BundleBot Malware - Comes Prepared With Its Own .NET Bundle

    BundleBot Malware - Comes Prepared With Its Own .NET Bundle

    Read more
    Knight Ransomware – Menacing Cross-Platforms Threat

    Knight Ransomware – Menacing Cross-Platforms Threat

    Read more

    November 2023

    Ducktail - Malware That Preys on Business Social Media Accounts

    Ducktail - Malware That Preys on Business Social Media Accounts

    Read more
    Exela Stealer – Rise of Open-source Info-Stealers

    Exela Stealer – Rise of Open-source Info-Stealers

    Read more
    SideCopy APT - Targeting Indian Defense Organizations

    SideCopy APT - Targeting Indian Defense Organizations

    Read more
    Quasar APT – Leveraging DLL Sideloading

    Quasar APT – Leveraging DLL Sideloading

    Read more

    October 2023

    Gelsemium APT - Deceptive Web Shells Unveiled

    Gelsemium APT - Deceptive Web Shells Unveiled

    Read more
    ToddyCat - Redefining Modern Espionage

    ToddyCat - Redefining Modern Espionage

    Read more
    Gold Melody – Exploiting Vulnerabilities in Unpatched Servers

    Gold Melody – Exploiting Vulnerabilities in Unpatched Servers

    Read more
    TAG-74 – Strengthening Capabilities with Bisonal Backdoor

    TAG-74 – Strengthening Capabilities with Bisonal Backdoor

    Read more
    Snatch Ransomware - Exploiting Safe Mode for Stealthy Intrusion

    Snatch Ransomware - Exploiting Safe Mode for Stealthy Intrusion

    Read more

    September 2023

    Rhysida Ransomware - Infecting Healthcare Organizations

    Rhysida Ransomware - Infecting Healthcare Organizations

    Read more
    Earth Estries : A Cyber Espionage Revelation

    Earth Estries : A Cyber Espionage Revelation

    Read more
    Chaes Malware - Siphoning Data through Chrome DevTools

    Chaes Malware - Siphoning Data through Chrome DevTools

    Read more
    Scarab Ransomware – Unravelling CosmicBeetle’s Cyber Threat

    Scarab Ransomware – Unravelling CosmicBeetle’s Cyber Threat

    Read more

    August 2023

    Raccoon Stealer Malware V2 - Resurging as a Stealthier Threat

    Raccoon Stealer Malware V2 - Resurging as a Stealthier Threat

    Read more
    NodeStealer – Targeting your Digital Presence

    NodeStealer – Targeting your Digital Presence

    Read more
    Akira Ransomware – Wrecking Damage in Retro-Style

    Akira Ransomware – Wrecking Damage in Retro-Style

    Read more
    Realst Infostealer – New Rust-Based Malware Targeting MacOS

    Realst Infostealer – New Rust-Based Malware Targeting MacOS

    Read more
    Casbaneiro Malware - An Emerging Banking Trojan

    Casbaneiro Malware - An Emerging Banking Trojan

    Read more
    FIN8 – Continues to Evolve its Toolkit

    FIN8 – Continues to Evolve its Toolkit

    Read more

    July 2023

    New FiveSys Rootkit – A Microsoft-Signed Malicious Kernel Driver

    New FiveSys Rootkit – A Microsoft-Signed Malicious Kernel Driver

    Read more
    Ursnif - Evolutionary Exploits of a Banking Trojan

    Ursnif - Evolutionary Exploits of a Banking Trojan

    Read more
    CACTUS Ransomware – Concealed Binary Wrecking Havoc

    CACTUS Ransomware – Concealed Binary Wrecking Havoc

    Read more
    Muddled Libra – Embracing Helpdesk Impersonation

    Muddled Libra – Embracing Helpdesk Impersonation

    Read more

    June 2023

    KPMG Cyber Threat Intelligence Platform

    Shuckworm - Another Russian APT Targeting Ukraine

    Read more
    KPMG Cyber Threat Intelligence Platform

    Void Rabisu – Blurring Lines between APTs & Cyber Criminals

    Read more
    KPMG Cyber Threat Intelligence Platform

    Asylum Ambuscade – Straddling between Cybercrime and Cyber Espionage

    Read more
    KPMG Cyber Threat Intelligence Platform

    ViperSoftX – Targeting Password Managers & Cryptos

    Read more

    June 2023

    KPMG Cyber Threat Intelligence Platform

    Shuckworm - Another Russian APT Targeting Ukraine

    Read more
    KPMG Cyber Threat Intelligence Platform

    Void Rabisu – Blurring Lines between APTs & Cyber Criminals

    Read more
    KPMG Cyber Threat Intelligence Platform

    Asylum Ambuscade – Straddling between Cybercrime and Cyber Espionage

    Read more
    KPMG Cyber Threat Intelligence Platform

    ViperSoftX – Targeting Password Managers & Cryptos

    Read more

    May 2023

    Trigona- Emerging New Ransomware

    Trigona- Emerging New Ransomware

    Read more
    Mango Sandstorm - Rapidly Leveraging Latest Exploits

    Mango Sandstorm - Rapidly Leveraging Latest Exploits

    Read more
    ViperSoftX – Targeting Password Managers & Cryptos

    ViperSoftX – Targeting Password Managers & Cryptos

    Read more
    Cylance - Tale of a New Cross Platform Ransomware

    Cylance - Tale of a New Cross Platform Ransomware

    Read more
    SocGholish – Hiding Behind the Masks

    SocGholish – Hiding Behind the Masks

    Read more

    April 2023

    QBot – Thriving With New Tactics

    QBot – Thriving With New Tactics

    Read more
    Rorschach – New Fastest Ransomware in the Town

    Rorschach – New Fastest Ransomware in the Town

    Read more
    Royal Ransomware – Stopping at Nothing

    Royal Ransomware – Stopping at Nothing

    Read more

    March 2023

    YoroTrooper – Motivated by Geo-Political Interests

    YoroTrooper – Motivated by Geo-Political Interests

    Read more
    Amadey – Return of the Malware Distributor

    Amadey – Return of the Malware Distributor

    Read more
    Clop Ransomware – Reckless Data Exfiltration Spree

    Clop Ransomware – Reckless Data Exfiltration Spree

    Read more
    PureCrypter – Proliferating Multiple Malware Families

    PureCrypter – Proliferating Multiple Malware Families

    Read more
    hardbit-2.0-01-mar-2023.pdf

    hardbit-2.0-01-mar-2023.pdf

    Read more

    February 2023

    Vice Society – Low Effort, High Impact Ransomware

    Vice Society – Low Effort, High Impact Ransomware

    Read more
    Clop Ransomware - Honing its techniques

    Clop Ransomware - Honing its techniques

    Read more
    Titan Stealer – Another Day, Another Stealer

    Titan Stealer – Another Day, Another Stealer

    Read more

    January 2023

    BianLian Ransomware – Smart, Fast & Stealthy

    BianLian Ransomware – Smart, Fast & Stealthy

    Read more
    Play Ransomware – A New Formidable Threat

    Play Ransomware – A New Formidable Threat

    Read more
    GodFather – Massacring the Android Defenses

    GodFather – Massacring the Android Defenses

    Read more

    December 2022

    Jester Stealer – Not a Joke

    Jester Stealer – Not a Joke

    Read more
    Raspberry Robin – The new popular worm

    Raspberry Robin – The new popular worm

    Read more
    BlackByte : Learning from its Mistakes

    BlackByte : Learning from its Mistakes

    Read more

    November 2022

    Aurora Stealer – Botnet turned MaaS turned Stealer

    Aurora Stealer – Botnet turned MaaS turned Stealer

    Read more
    Daxin Backdoor - Over-engineered for Stealth

    Daxin Backdoor - Over-engineered for Stealth

    Read more
    RapperBot – Swiftly building upon Mirai

    RapperBot – Swiftly building upon Mirai

    Read more
    APT 42 – A con artist with phony tricks

    APT 42 – A con artist with phony tricks

    Read more

    October 2022

    Magniber - The Single Client Ransomware

    Magniber - The Single Client Ransomware

    Read more
    Bumblebee – The new buzz among malware loaders

    Bumblebee – The new buzz among malware loaders

    Read more

    September 2022

    Loci Locker - A Painfully Mischievous RaaS

    Loci Locker - A Painfully Mischievous RaaS

    Read more
    Evilnum - Evolved As Cyber Demon?

    Evilnum - Evolved As Cyber Demon?

    Read more
    Shikitega

    Shikitega

    Read more
    Shikitega - Stealthy Sophisticated Malware

    Shikitega - Stealthy Sophisticated Malware

    Read more
    Haron Ransomware

    Haron Ransomware

    Read more

    August 2022

    Raccoon Stealer - Simple Yet Effective

    Raccoon Stealer - Simple Yet Effective

    Read more
    RedLine Stealer - A Cheap and Versatile malware

    RedLine Stealer - A Cheap and Versatile malware

    Read more
    MedusaLocker Ransomware: In-force and Compact !

    MedusaLocker Ransomware: In-force and Compact !

    Read more

    July 2022

    Karakurt: The Conti Extortion Arm

    Karakurt: The Conti Extortion Arm

    Read more
    ToddyCat APT : Both perilous and quiet !!

    ToddyCat APT : Both perilous and quiet !!

    Read more
    Bronze Starlight - Ransomware for Intelligence theft

    Bronze Starlight - Ransomware for Intelligence theft

    Read more
    MuddyWater: A Confederation of Thieves

    MuddyWater: A Confederation of Thieves

    Read more

    June 2022

    LuoYu - A near impossible man on the side Attacker !

    LuoYu - A near impossible man on the side Attacker !

    Read more
    Gallium APT

    Gallium APT

    Read more
    Panchan Botnet – Proliferating through SSH

    Panchan Botnet – Proliferating through SSH

    Read more
    Follina : Another Troublemaker in Cyber Market!

    Follina : Another Troublemaker in Cyber Market!

    Read more

    May 2022

    Black Basta : Yet another Rebrand?

    Black Basta : Yet another Rebrand?

    Read more
    Remote Takeover of F5's Big-IP

    Remote Takeover of F5's Big-IP

    Read more
    Bitter APT : An Intelligence Accumulator!

    Bitter APT : An Intelligence Accumulator!

    Read more

    April 2022

    NOKOYAWA: Another Stealthy Ransomware!

    NOKOYAWA: Another Stealthy Ransomware!

    Read more
    SunCrypt Ransomware : Maze Re-incarnated

    SunCrypt Ransomware : Maze Re-incarnated

    Read more
    APT28

    APT28

    Read more

    March 2022

    Zeoticus 2.0 : an offline payload executer!

    Zeoticus 2.0 : an offline payload executer!

    Read more
    Copy no Jutsu : Sidecopy emulates Sidewinder to confuse security community

    Copy no Jutsu : Sidecopy emulates Sidewinder to confuse security community

    Read more
    Cuba Ransomware : Incited by Hanictor

    Cuba Ransomware : Incited by Hanictor

    Read more
    The Lapsus$ Group: Brazen, notorious and chaotic extortionists

    The Lapsus$ Group: Brazen, notorious and chaotic extortionists

    Read more

    February 2022

    Lazarus Group - The Most Notorious Group

    Lazarus Group - The Most Notorious Group

    Read more
    White Rabbit: FIN8 Group's New Pet ?

    White Rabbit: FIN8 Group's New Pet ?

    Read more
    Sugar Ransomware - RaaS for common man?

    Sugar Ransomware - RaaS for common man?

    Read more
    BlackCat Ransomware - Known for its sophistication

    BlackCat Ransomware - Known for its sophistication

    Read more
    explore-insights
    Explore Insights
    advisory-offerings
    Explore Advisory service offerings

    Connect with us

    Contact our specialists for more information

    Contact us
    connect with us