Research & Reports Archives

Cyjax research sees TeamTNT added to Mitre ATT&CK framework

A wide variety of malware and threat actors target cloud and container technologies, such as Docker, Kubernetes, and Amazon Web Services. The two main techniques for initial access that are leveraged by threat actors against these technologies are misconfigured instances with unsafe ports open and improper access control, and users downloading malicious versions of popular […]

Cyjax research sees TeamTNT added to Mitre ATT&CK framework Read More »

Leaving Afghanistan: China and Russia take new world leadership role

The “Agreement for bringing peace in Afghanistan”, signed by the Taliban and the US on 29 February 2020, paved the way for a ceasefire between conflicting parties in Afghanistan and opened the door for the withdrawal of US and NATO troops from Afghan soil. As part of the agreement, the Taliban pledged to undertake a

Leaving Afghanistan: China and Russia take new world leadership role Read More »

Top 10 Cyber Threats – January to June 2021

In the first six months of 2021, many countries were experiencing the worst waves of the COVID-19 pandemic and organisations came under increased strain, both from a business standpoint and a cybercriminal one. Critical infrastructure and enterprises were hit by attacks from disruptive ransomware and the opportunistic exploitation of multiple 0day vulnerabilities by state-sponsored APTs.

Top 10 Cyber Threats – January to June 2021 Read More »

Darknet Review – Q1 2021

The first quarter of 2021 saw a number of noteworthy developments in the darknet community. This included the DDoS attacks targeting WhiteHouse market and the shutdown of Joker’s Stash. There have also been some interesting emerging trends concerning ransomware groups that are likely to affect the threat landscape for the rest of the year. WhiteHouse

Darknet Review – Q1 2021 Read More »

Darknet Review – Q4 2020

2020 was a year of instability around the world, and the darknet was not unaffected. COVID-19 had a large part to play in the turmoil of the cybercriminal underworld, as drug vendors had their supply chains disrupted. Delays in both international and domestic transport led to many vendors temporarily halting their operations. Beyond the pandemic,

Darknet Review – Q4 2020 Read More »

Pharmaceutical Threat Intelligence: Use Cases

Introduction Cyjax monitors critical asset information covering the clear, deep and darknet for businesses of all sizes across many different industry verticals. We have serviced two major pharmaceutical companies for many years, delivering timely and actionable intelligence. We have worked closely with their security operations teams, helping to reduce their risk of an incident by

Pharmaceutical Threat Intelligence: Use Cases Read More »

COVID-19 Critical Infrastructure Cyber Threat Brief

The full Cyber Threat Brief for Critical Infrastructure can be downloaded here. There has been a significant uptick in cyberattacks exploiting fear of the coronavirus to compromise victims. Notably, however, there has not been a surge in the total number of attacks. Instead, existing cybercriminal operations have been rethemed with COVID-19 lures. Attackers have not

COVID-19 Critical Infrastructure Cyber Threat Brief Read More »

Cyjax Darknet Quarterly Review

Drugs, guns, credit card details and malware are what most people typically associate with the darknet. All of which are certainly present. But market volatility is one feature of the darknet which is less frequently discussed. Ever since Silk Road was shut down by the FBI in 2013, darknet markets have come and gone, rising

Cyjax Darknet Quarterly Review Read More »