Skip to content
Bulwark
Black
LLC
Software
Contractor Codex
↗
SAMscout AI
↗
VA Disability Calc & Track
All software
Threat Intel
Latest reporting
Russian CTI
Chinese CTI
North Korean CTI
Iranian CTI
Global / Anomalous
Malware
IOC / YARA downloads
IOC Extractor
Services
Websites & Web Apps
Custom iOS Apps
AI & Automation
Small-Business IT & Cybersecurity
Company
About
Community
Contact
Blog
Threat Intel →
Work with us →
Software
All Software →
Contractor Codex
↗
SAMscout AI
↗
VA Disability Calc & Track
All software
Threat Intel
All Threat Intel →
Latest reporting
Russian CTI
Chinese CTI
North Korean CTI
Iranian CTI
Global / Anomalous
Malware
IOC / YARA downloads
IOC Extractor
Services
All Services →
Websites & Web Apps
Custom iOS Apps
AI & Automation
Small-Business IT & Cybersecurity
Company
All Company →
About
Community
Contact
Blog
Work with us →
RSS
Light mode
Dark mode
Latest
Jscrambler npm Compromise Shows Build Pipelines Need Runtime Controls
Ghost Phishing Shows Why Email Security Must Follow the Browser
Pakistani Police Intrusions Show Why Public-Sector Data Systems Are Strategic Targets
Bad Epoll Shows Linux Kernel LPEs Belong in the Patch Priority Queue
Fake Payment SDKs Show Why Dependency Risk Is Credential Risk
Critical UniFi Flaws Put Network Control Planes Back in the Patch Queue
Vidar Stealer Campaign Shows Why File Size and Fake Signatures Still Beat Weak Controls
ADFS Signing Keys Show Why Federation Servers Are Tier-Zero Identity Infrastructure
UAT-7810 Shows Edge Devices Are Becoming China-Nexus Relay Infrastructure
FortiBleed Shows Firewall Credentials Are Ransomware Fuel
NetNut and Popa Takedown Shows Residential Proxies Are Now Attack Infrastructure
Vect and TeamPCP Show Supply-Chain Credentials Are Ransomware Fuel
Ousaban Shows Banking Trojans Are Learning to Hide From Sandboxes
NUT upsmon Command Injection Shows UPS Monitoring Belongs in the Patch Queue
Jscrambler npm Compromise Shows Build Pipelines Need Runtime Controls
Ghost Phishing Shows Why Email Security Must Follow the Browser
Pakistani Police Intrusions Show Why Public-Sector Data Systems Are Strategic Targets
Bad Epoll Shows Linux Kernel LPEs Belong in the Patch Priority Queue
Fake Payment SDKs Show Why Dependency Risk Is Credential Risk
Critical UniFi Flaws Put Network Control Planes Back in the Patch Queue
Vidar Stealer Campaign Shows Why File Size and Fake Signatures Still Beat Weak Controls
ADFS Signing Keys Show Why Federation Servers Are Tier-Zero Identity Infrastructure
UAT-7810 Shows Edge Devices Are Becoming China-Nexus Relay Infrastructure
FortiBleed Shows Firewall Credentials Are Ransomware Fuel
NetNut and Popa Takedown Shows Residential Proxies Are Now Attack Infrastructure
Vect and TeamPCP Show Supply-Chain Credentials Are Ransomware Fuel
Ousaban Shows Banking Trojans Are Learning to Hide From Sandboxes
NUT upsmon Command Injection Shows UPS Monitoring Belongs in the Patch Queue
Bulwark Black
Research Papers
Coming Soon