Conscia ThreatInsights is a team of dedicated Threat Intelligence and Reverse Engineering experts working on delivering TI to our audiences.
Our mission is to deliver relevant and credible Threat Intelligence to our customers. We emphasize the words relevant and credible because we strongly believe in delivering quality content rather than quantitative.
- Relevant means that we analyze threats and determine whether they are a threat to a specific entity (i.e., our customer).
- Verifying the credibility of our sources is key to our mission. Clearnet news can be a source of lots of information. Without proper examination, analysis and evaluation, that information may not be true or relevant to you, regardless of the pompous title. Our sources heavily rely on Dark Web monitoring, where the latest threats appear first and are highly credible.
We also believe that sharing Threat Intelligence with everyone is beneficial for the whole cybersecurity scope. This is why we would like to invite you to subscribe to our free newsletter, where you will receive weekly trending cyber threats information on a global scale.
Latest ThreatInsights
Blog
How could AI simplify malware attacks, and why is this worrying?
AI can significantly reduce Malware development and distribution costs, giving cybercriminals an advantage over insufficiently secured targets. Read the article to see practical examples of...
Read more
Blog
Digital Forensics: Discovering Threat Actor’s traces using Recycle Bin
Criminals don't like to leave traces. In the cyber world, that means deleting their malicious software from your environment after the attack or infiltration. This...
Read more
Blog
Season’s Greetings from Cybercriminals
Cybercrime is on the rise during the holiday season. Cybercriminals take advantage of Black Friday, Cyber Monday, and similar to scam individuals. What can companies...
Read more
Blog
Phishing as a Service (PHaaS) – an effective attack vector for all threat actors
Phishing has professionalized. It is literally available to criminals in a »as a service« model, and the most effective examples are extremely convincing. And therefore...
Read more
Blog
New 0-day vulnerabilities in Microsoft Exchange Server actively exploited
Two reported 0-day vulnerabilities affecting Microsoft Exchange Server 2013, 2016, and 2019 (on-prem) tracked as CVE-2022-41040 and CVE-2022-41082 are being actively exploited in the wild....
Read more
Blog
Insider Threats: What are they and how to mitigate them
While often neglected, an organization’s own personnel pose one of the biggest threats to its security. Human error or negligence is usually the leading cause...
Read more
Blog
Diving Deep: How to detect Malware Persistency pt. 1
During a cyber-attack adversaries might gain access to an environment through a certain system, but that might not be their actual targeted system or that...
Read more
Blog
Diving Deep: How to detect Typosquatting
Typosquatting is a type of social engineering attack, where a threat actor registers domains with deliberately misspelled names of known brands or websites and hosts...
Read more
Blog
Vulnerability Spotlight: How to detect Follina the Windows MSDT 0-day
Microsoft confirmed a security vulnerability tracked as CVE-2022-30190 and released it on their MSRC portal on May 30th, 2022. The vulnerability allows for a remote...
Read more
Blog
Diving Deep: Malware Injection Techniques – Part 1
Malware Injection Techniques This is the first entry in the Malware Injection Techniques article series that we will be writing about. The ultimate goal of...
Read more