Author Archives: Emin Baylarov

I recently heard about a wave of scams exploiting Booking.com users. So I went and researched it for myself. I came across a post on the r/travel subreddit about such an incident. [1] The user received a seemingly authentic message with a URL via Booking.com’s app. They provided their credit card information and said that “within […]

Introduction The year 2023 saw numerous significant events that prompted many organizations to reevaluate their security strategies, including rethinking their choice of vendors and the size of their cybersecurity teams. Unfortunately, amidst these challenges, we witnessed thousands of layoffs in the tech sector, including cybersecurity departments. This occurred despite the relentless and ever-growing threat posed […]

Welcome to the Cyber Threat Intelligence (CTI) Analyst Challenge!  I am excited to introduce a comprehensive repository designed to enhance the skills and expertise of CTI analysts through a challenging and engaging intelligence analysis exercise. Purpose This repository is created to test and improve the capabilities of CTI analysts by providing a structured challenge that […]

This post is part of my Tracking Adversaries blog series, where I provide a summary analysis of an adversary that has captured my attention and warrants deeper investigation. Qilin has already been extensively covered by experts from Trend Micro, Secureworks, Group-IB, SentinelOne, SOCRadar, BleepingComputer, and MalwareHunterTeam. Kudos to these researchers—without their contributions, our understanding of […]

Introduction Ransomware attacks are becoming increasingly devastating, but one constant remains: the tools used by cybercriminals. The Ransomware Tool Matrix is a comprehensive resource that highlights the tactics, techniques, and procedures (TTPs) frequently employed by ransomware and extortionist groups. This repository equips defenders with actionable intelligence on the tools commonly utilized by adversaries, drawing insights […]