Skip to content
      Featured Threat Report Threat Research

      Luna Moth: The Actors Behind the Recent False Subscription Scams

      Over the last few months, Sygnia’s Incident Response team has been methodically tracking the 'Luna Moth' ransom group. Their modus-operandi resembles scammers, with the...

      Read More

      Advisory

        Filter by Topic

        Advisory
        Featured Incident Response Threat Hunting

        Sygnia Advisory: Key takeaways from leak of Conti crime group internal communications

        The ongoing war between Russia and Ukraine has led to a wide range of impacts and outcomes globally, and across industries. In the cyber domain, one of the most recent... Read More
        Advisory
        Featured Incident Response Threat Hunting

        Sygnia Advisory: Potential Okta Breach

        executive summary On March 22nd, 2022, the LAPSUS$ threat group published potential evidence of a successful breach of Okta, a widely used identity provider. This... Read More
        Advisory
        Featured Incident Response Threat Hunting

        Advisory: Russia–Ukraine Conflict Escalation

        executive summary As we continue to closely monitor the unfolding conflict between Russia and Ukraine, we're publishing this advisory to support global organizations. The... Read More
        Advisory
        Incident Response Threat Hunting

        Sygnia Advisory: Log4Shell Remote Code Execution

        Updated - December 17, 2021 On December 9, a critical remote code execution (RCE) vulnerability in Java logging library Apache Log4j was made public. The vulnerability,... Read More
        Advisory
        Incident Response Threat Hunting Ransomware

        Kaseya Ransomware Supply Chain Attack

        On July 2nd, several managed service providers reported numerous ransomware incidents affecting their clients via Kaseya VSA – an endpoint monitoring and patch management... Read More
        Advisory
        Incident Response Threat Hunting Ransomware

        Detection And Hunting Of Golden SAML Attack

        The SolarWinds software supply chain attack is known to have affected U.S. government agencies, critical infrastructure entities, and private sector organizations by an... Read More