The Mystery Behind Notorious Russian Hacker DukeEugene
The hacker, known as DukeEugene, who the experts said sold expensive Android hacking services to other criminals, told everyone exactly where he was going: the frontlines of the invasion of Ukraine.
Three things to learn to stay afloat in today’s digital world
AI is seeping into our everyday lives through the smallest of holes. Do you feel like a dinosaur if you are not using AI? It seems that many employees are being pressured into vibe’ing at work by using some large language model (LLM).
Here’s why ignoring politics is no longer an option for cyber pros
Ashley Jess, an Intel 471 senior intelligence analyst, was quoted in this Cybernews article on intersection of cyber and politics.
Weekly Recap: Chrome 0-Day, Data Wipers, Misused Tools and Zero-Click iPhone Attacks
Intel 471, in a report last week, highlighted an increase in Android malware incorporating hidden virtual network computing (HVNC), keylogging, and remote control functionalities, and a decrease in web injects.
How emerging ransomware trends can help inform payment decisions
Thanks to intensified activity on the part of law enforcement agencies worldwide – resulting in the shutdown of highly profitable and destructive ransomware-as-a-service (RaaS) groups such as LockBit – we’ve seen some encouraging signs within the ongoing fight against ransomware threats.
Threat Actors Exploit Malware Loaders to Circumvent Android 13+ Accessibility Safeguards
Threat actors have successfully adapted to Google’s stringent accessibility restrictions introduced in Android 13 and later versions. According to Intel 471's Report, this loader enables attackers to sidestep Google’s restrictions, ensuring that malware can exploit accessibility features to harvest sensitive data and execute unauthorized actions.
Hiding in Plain Sight: How Threat Hunting Brings LOTL Attacks “Out of the Shadows”
Mike Mitchell, VP of Threat Hunting at Intel 471, explains how the LOTL adversaries will swiftly learn that there is no more “land to live off of,” nor any places left to hide in plain sight.
Heute sitzen CISOs am Management-Tisch
Brandon Hoffman ist Chief Strategy Officer der Security-Firma Intel 471. Im Interview spricht er über Veränderungen in der Cyberabwehr, die Wichtigkeit von Threat Hunting und die Bedrohungslage in der Schweiz.
How to threat hunt Living Off The Land binaries
In this Help Net Security video, Lee Archinal, Senior Threat Hunter at Intel 471, walks through practical strategies for detecting malicious activity involving Living Off The Land binaries (LOLBins).
Risky Bulletin: SVG use for phishing explodes in 2025
Over the course of the past six months, the SVG image format has become a favorite method of hiding and delivering malicious code for email phishing campaigns. Intel 471 looks at the structure of the DanaBot botnet, which was dismantled by authorities last week.
