Blog: Stay Ahead of Cyber Threats | Intel471
Resources

Intel 471 Blog

Cutting edge threat intelligence and research

Homepage Hero
How Gray Market Cryptocurrency Exchanges Fuel Cybercrime
Cybercriminals// Malicious Actors// Jun 06, 2023

How Gray Market Cryptocurrency Exchanges Fuel Cybercrime

Gray market cryptocurrency exchanges that serve cybercriminals are innovating as law enforcement pressure increases. Intel 471 analyzes how these services are evolving.

Gaining the Intelligence Advantage with Cyber HUMINT - Part Three
Threat Intelligence// May 24, 2023

Gaining the Intelligence Advantage with Cyber HUMINT - Part Three

Cyber HUMINT is conducted by creating credible personas that can move fluidly in the cybercriminal underground, engaging with threat actors and gaining exclusive access to information. But this end goal isn’t easy to achieve....

Gaining the Intelligence Advantage with Cyber HUMINT - Part Two
Threat Intelligence// May 17, 2023

Gaining the Intelligence Advantage with Cyber HUMINT - Part Two

We examine what can be collected from underground forums and how cyber threat intelligence analysts using cyber HUMINT can pull the signal from the noise.

Gaining the Intelligence Advantage with Cyber HUMINT - Part One
Threat Intelligence// May 14, 2023

Gaining the Intelligence Advantage with Cyber HUMINT - Part One

While digital-dependent intelligence disciplines such as open source intelligence (OSINT), social media intelligence (SOCMINT) and signals intelligence (SIGINT) have become commonplace in our interconnected world, HUMINT cont...

Deepfakes and AI: Ready for Cybercrime Prime Time?
Cybercriminals// Malicious Actors// Apr 26, 2023

Deepfakes and AI: Ready for Cybercrime Prime Time?

Cybercriminals on underground forums are showing increasing interest in “deepfake” production services, which have been spurred by advances in artificial intelligence. Intel 471 analyzed deepfake services to see what’s on off...

Countering the Problem of Credential Theft
Cyber Attacks// Apr 13, 2023

Countering the Problem of Credential Theft

One of the most tangible threats to enterprises are initial access brokers, who steal and then sell login credentials and access to other threat actors, such as ransomware gangs. Here's an evaluation of this cybercrime-as-a-s...

The Demise of the Breached Cybercrime Forum
Cybercriminals// Malicious Actors// Mar 29, 2023

The Demise of the Breached Cybercrime Forum

BreachForums was an infamous marketplace for stolen data, personal information, login credentials and more. Its demise has reverberated in the cybercriminal underground.

New loader on the bloc - AresLoader
Mar 22, 2023

New loader on the bloc - AresLoader

AresLoader is a new loader malware-as-a-service (MaaS) offered by threat actors with links to Russian hacktivism that was spotted recently in the wild.

A Look at NLBrute, the RDP Attack Tool
Mar 15, 2023

A Look at NLBrute, the RDP Attack Tool

Intel 471 looks at NLBrute, a pivotal piece of software used by cybercriminal groups to break into networks, and the impacts of brute-force attacks.

A Ransomware Forecast for 2023
Mar 08, 2023

A Ransomware Forecast for 2023

There were signs of change in 2022 for ransomware. We explore what defenders may see this year.