My CTI Networking report is turning into a blog series, and here is part 1: blog.pulsedive.com/sharing-compar…

🤯 The level of sophistication of the XZ attack is very impressive! I tried to make sense of the analysis in a single page (which was quite complicated)! I hope it helps to make sense of the information out there. Please treat the information "as is" while the analysis

Newly published: a beginner-friendly CyberChef 101 Guide blog.pulsedive.com/tool-guide-cyb… We cover how it works and how you can use it for security analysis - real-world examples and resources included.

New Threat Added: Asuka Stealer Find IOCs, TTPs, news and other highlights at: pulsedive.com/threat/Asuka%2…

Our browser add-on for Chrome, Firefox, and Edge has a new look, fresh features, and more controls with our V3 update. Free to use and enrich from our Pulsedive Community platform. blog.pulsedive.com/update-pulsedi…

🔎What's going on with Latrodectus? blog.pulsedive.com/threat-researc… Our latest research blog examines the distribution mechanisms, C2 traffic patterns, and key capabilities of Latrodectus loader.

Final part of the CTI Networking Research series is now out. blog.pulsedive.com/sharing-compar…

New blog published, all about phishing kits: blog.pulsedive.com/phishing-kits-… How do they work, what capabilities do they have, and most importantly - how can we better detect and protect against phishing kits?

We're tracking the new DodgeBox (loader) & MoonWalk (backdoor) tools researched by the Zscaler ThreatLabz team as related threat pages in our free Community Platform. DodgeBox: pulsedive.com/threat/DodgeBox MoonWalk: pulsedive.com/threat/MoonWalk APT41: pulsedive.com/threat/APT41

CrowdStrike BSOD Outage: What We Know blog.pulsedive.com/crowdstrike-bs…

PSA from the Curated Intelligence Community to the CTI industry — watch out for cybercrime groups seeking access to your vendor platforms ⚠️

I'm coming for you #BSidesNYC

Oh, so you track ransomware tools? OK, name every one. Me:

We released Pulsedive 6.3 this week to Pulsedive Community. This scanning infrastructure update benefits all users and customers with better data enrichment and performance. Details below

Community Resource Share: Curated Intelligence's CTI Research Guide curatedintel.org/2024/10/the-ct… Start with this guide if you're finding it difficult to consistently and appropriately perform intelligence collection for your stakeholders.

3 weeks.

A technical analysis reveals that the Kimsuky threat group utilizes a JavaScript dropper to exfiltrate data from compromised systems, utilizing network IOCs and establishing persistence via Windows scheduled tasks. #CyberSecurity #MalwareAnalysis blog.pulsedive.com/dissecting-the…

We'll be back . See you soon.

We analyzed the malicious code in the recent "second coming" of Shai-Hulud. blog.pulsedive.com/return-of-shai…

Exploitation attempts for #React2Shell (CVE-2025-55182) have been widespread over the last week. Three resources that outline exploitation are: greynoise.io/blog/cve-2025-… esentire.com/security-advis… huntress.com/blog/peerbligh… Recommendation: Deploy patches as soon as possible