Skip to content
      Blog Post
      Featured Incident Response Threat Hunting

      The Misconceptions of 2021's Black Swan Cyber Events

      First published on Dark Reading, Apr 14 Organizations can defend themselves from future unknows attacks by implementing targeted security hardening measures, turning on...

      Read More

      All Blog Posts

        Filter by Topic

        Threat Report
        Threat Research

        Praying Mantis An Advanced Memory Resident Attack

        While responding to targeted attacks on high-profile organizations in the United States, Sygnia researchers investigated an advanced memory-resident attack commonly... Read More
        Community Tool
        Adversary Security

        Cloud Scout: a New Open Source Tool for Cloud Security

        Sygnia is releasing Cloud Scout, an open source tool for cloud security. Cloud Scout was built to map cloud and hybrid cloud environments, identify and visualize cross... Read More
        Threat Report
        Incident Response Threat Research Threat Hunting Ransomware

        Lazarus Group’s Mata Framework Leveraged To Deploy TFlower Ransomware

        Over the past few years, North Korea has turned its offensive cyber operations into a major source of income. On February 17, 2021, the US Department of Justice (DoJ) has... Read More
        Advisory
        Incident Response Threat Hunting Ransomware

        Kaseya Ransomware Supply Chain Attack

        On July 2nd, several managed service providers reported numerous ransomware incidents affecting their clients via Kaseya VSA – an endpoint monitoring and patch management... Read More
        Advisory
        Incident Response Threat Hunting Ransomware

        Detection And Hunting Of Golden SAML Attack

        The SolarWinds software supply chain attack is known to have affected U.S. government agencies, critical infrastructure entities, and private sector organizations by an... Read More
        Advisory
        Incident Response Threat Hunting

        Demystifying The PrintNightmare Vulnerability

        On June 28th, a critical remote code execution vulnerability was published, impacting Windows operating systems. The vulnerability allows threat actors who gained initial... Read More