Category Archives: Uncategorized

Legitimate third-party Platform-as-a-Service (PaaS) providers are becoming increasingly leveraged by threat actors for phishing and malware deployment. PaaS providers such as cloud instances, marketing platforms, content delivery networks (CDN), and dynamic DNS servers have been weaponised for a range of malicious activities. One of the key benefits is that they can be used to evade detection […]

As stated in the executive summary of the Corporate SOME Setup and Management Guide published by the Directorate General of Communications under the Ministry of Transport, Maritime Affairs, and Communications of the Republic of Turkey in 2014, Corporate Cyber Incident Response Teams (SOME) are crucial structures in mitigating cyber incidents and preventing or reducing potential […]

Background:  The Qakbot banking Trojan is one of the top-tier malware families on the current threat landscape. It is distributed in mass spam campaigns, steals confidential information, and has also provided access to ransomware operators. Preventing and detecting this threat has become a priority for many organisations as a successful infection can lead to a […]

On November 12, 2016, Mustafa Ali CAN, a successful player of “Pi Hediyem Var,” contacted me after receiving an alert from his antivirus software while visiting a government website. In our correspondence, he mentioned that the antivirus had identified a malicious JavaScript code on the site, labeling it as JS/Kryptic.I. As a cybersecurity expert aware […]

I recently encountered an intriguing campaign that uses fake websites to distribute malware. While this technique (TTP) is not new, it appears to be increasing in frequency. From my own observations, I’ve noticed this happening more often in 2023 compared to previous years. Though it’s hard to quantify without in-depth research, it’s something that other […]