Energy

Threat Advisories

Response to CISA Advisory (AA25-343A): Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure
ByFrancis Guibernau December 10, 2025January 15, 2026

Read More Response to CISA Advisory (AA25-343A): Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure
Threat Research

Emulating the Sophisticated Russian Adversary Seashell Blizzard
ByAyelen Torello April 2, 2025January 14, 2026

Read More Emulating the Sophisticated Russian Adversary Seashell Blizzard
Threat Research

Emulating the Financially Motivated Criminal Adversary FIN7 – Part 2
ByFrancis Guibernau February 14, 2025January 14, 2026

Read More Emulating the Financially Motivated Criminal Adversary FIN7 – Part 2
Threat Advisories

Updated Response to CISA Advisory (AA23-136A): #StopRansomware: BianLian Ransomware Group
ByAyelen Torello January 16, 2025January 14, 2026

Read More Updated Response to CISA Advisory (AA23-136A): #StopRansomware: BianLian Ransomware Group
Threat Research

Emulating the Financially Motivated Criminal Adversary FIN7 – Part 1
ByFrancis Guibernau December 12, 2024January 14, 2026

Read More Emulating the Financially Motivated Criminal Adversary FIN7 – Part 1
Threat Advisories

Response to CISA Advisory (AA24-290A): Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations
ByFrancis Guibernau October 17, 2024January 14, 2026

Read More Response to CISA Advisory (AA24-290A): Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations
Threat Advisories

Response to CISA Advisory (AA24-207A): North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs
ByFrancis Guibernau July 26, 2024January 14, 2026

Read More Response to CISA Advisory (AA24-207A): North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs
Threat Research

Emulating the Sabotage-Focused Russian Adversary Sandworm
-Part 1
ByFrancis Guibernau March 6, 2024January 14, 2026

Read More Emulating the Sabotage-Focused Russian Adversary Sandworm-Part 1
Threat Advisories

Response to CISA Advisory (AA24-038A): PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure
ByFrancis Guibernau February 9, 2024January 15, 2026

Read More Response to CISA Advisory (AA24-038A): PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure
Product & Platform

Dream Job, or Is It?
ByMadison Steel January 31, 2024January 14, 2026

Read More Dream Job, or Is It?
Threat Advisories

Response to CISA Advisory (AA23-144A): China State-Sponsored Actor Volt Typhoon Living off the Land to Evade Detection
ByFrancis Guibernau May 25, 2023January 15, 2026

Read More Response to CISA Advisory (AA23-144A): China State-Sponsored Actor Volt Typhoon Living off the Land to Evade Detection
Threat Research

Emulating the Cybercriminal Initial Access Broker TA551
ByFederico Quattrin March 3, 2023January 15, 2026

Read More Emulating the Cybercriminal Initial Access Broker TA551
Threat Research

Emulating the Highly Sophisticated North Korean Adversary Lazarus Group – Part 1
ByFrancis Guibernau January 5, 2023January 15, 2026

Read More Emulating the Highly Sophisticated North Korean Adversary Lazarus Group – Part 1
Threat Research

Emulating the Sophisticated Russian Adversary APT28
ByFrancis Guibernau September 21, 2022January 15, 2026

Read More Emulating the Sophisticated Russian Adversary APT28