Scattered Spider (UNC3944) is a loosely affiliated but highly skilled cybercrime group first observed around May 2022. Known for their adaptability, they operate under multiple aliases including Octo Tempest, Muddled Libra, and 0ktapus. At first, they specialized in SIM swapping and credential theft.

A compromise of Salesloft’s GitHub kicked off a supply‑chain campaign that used stolen OAuth tokens from Drift to export data at scale from Salesforce.

APT36—also known as Transparent Tribe, Mythic Leopard, ProjectM, and Earth Karkaddan—is a Pakistan-based advanced persistent threat (APT) group active since at least 2013.

How to deploy the OpenCTI (Open Cyber Threat Intelligence) platform within Docker, enabling you to aggregate and analyze threat intelligence in one place.

This flaw impacts WinRAR versions prior to 7.13 and leverages a directory traversal bug to allow attackers to drop and execute malicious code on a target system without the victim’s knowledge.

Delve into what KQL is, how it powers Microsoft Sentinel, and how cyber defenders can harness it to strengthen security postures with practical query example.

This article breaks down the tools you can use to fight back against phishing emails, from simple checks to more advanced techniques.

Discover what infostealer malware is, how it operates, real-life examples like RedLine, Vidar, and Raccoon Stealer, and learn effective cybersecurity measures to protect your sensitive data.

Security Onion SIEM setup guide. Network security monitoring, intrusion detection, and log management