Skip to content

    Guarding the Bridge: New Attack Vectors in Azure AD Connect

    By researching Azure AD Connect components, Sygnia was able to discover several attack vectors for extracting Connector credentials and domain users’ NT hashes, while...

    Read More

    Threat Research

      Filter by Topic

      Featured Incident Response Threat Research

      Revealing Emperor Dragonfly: Night Sky and Cheerscrypt - A Single Ransomware Group

      Sygnia recently investigated a Cheerscrypt ransomware attack which utilized Night Sky ransomware TTPs. Further analysis revealed that Cheerscrypt and Night Sky are both... Read More
      Featured Threat Report Threat Research

      Luna Moth: The Threat Actors Behind Recent False Subscription Scams

      Over the last few months, Sygnia’s Incident Response team has been methodically tracking the 'Luna Moth' ransom group. Their modus-operandi resembles scammers, with the... Read More
      Incident Response Threat Research Blog Post

      7 Cyber Attacks That Kept the Industry Talking in 2021

      As we start 2022, it’s time to take a good look back at the year we’re leaving behind us. At Sygnia, we’ve always been dedicated to the cyber security community, uncovering... Read More
      Featured Threat Report Threat Research Videos

      Elephant Beetle: Uncovering an Organized Financial-Theft Operation

      For the past two years, Sygnia’s Incident Response (IR) team has been methodically tracking the Elephant Beetle threat group, an organized, significant financial-theft... Read More
      Threat Research

      Praying Mantis An Advanced Memory Resident Attack

      While responding to targeted attacks on high-profile organizations in the United States, Sygnia researchers investigated an advanced memory-resident attack commonly... Read More
      Incident Response Threat Research Threat Hunting Ransomware

      Lazarus Group’s Mata Framework Leveraged To Deploy TFlower Ransomware

      Over the past few years, North Korea has turned its offensive cyber operations into a major source of income. On February 17, 2021, the US Department of Justice (DoJ) has... Read More