Threat actors doing crime online use a variety of precautions and technologies to avoid getting caught. Mick Deben is a cybersecurity consultant with DMC Group in the Netherlands. He recently completed his master’s degree thesis, which focused on creating a knowledge base around these anonymity techniques. The knowledge base is called Concealment Layers for Online Anonymity and Knowledge (CLOAK), and it’s intended to give CTI practitioners another way to fingerprint threat actors. In this Studio 471, Deben discusses how he developed CLOAK and how practitioners can use it.
Participants:
Mick Deben, Cybersecurity Consultant, DMC Group
Jeremy Kirk, Executive Editor, Cyber Threat Intelligence, Intel 471
The disruption of the XSS cybercrime forum and arrest of its administrator in Ukraine in July 2025 has shook Russian-speaking cybercriminal communities to their core and raised questions if the forum can recover.
The Lumma infostealer malware collects highly sensitive data including logins and session tokens. Here's how to conduct a threat hunt leveraging up-to-date tactics, techniques and procedures used by Lumma.
Pro-Russian hacktivism campaigns continued to be directed at countries and entities supporting Ukraine. Here's a briefing about new hacktivist groups and the risks the groups pose.
Stay informed with our weekly executive update, sending you the latest news and timely data on the threats, risks, and regulations affecting your organization.