Had such a fun time at Labscon (their CfP is open atm cvent.com/c/abstracts/05……). If you're interested in how we're using OSINT-based tooling to report stories, this talkmight be of interest

We expand a single domain reported by the FBI as part of a recent toll road smishing campaign into hundreds of phishing campaigns, including dozens related to 'unpaid toll' smishing scams.

Check out our latest blog post here:
validin.com/blog/hunting-f…

Meet the Iranian Company Powering Russia's Drone War on Ukraine, by Adam Rawnsley. Video here:

youtube.com/watch?v=2aZ7sh…

Very excited to drop our long awaited report on #China 's Digital Silk Road! We show how Beijing is seeking to create a China-centric global authoritarian alternative to digital governance norms, through examples in the Indo-Pacific article19.org/resources/chin…

Lots of foreign election influence news/drops this week. Here's one from Cybersecurity and Infrastructure Security Agency, FBI, & Office of the DNI highlighting a few tactics we're seeing from the 'usual suspects' (Russia, China, Iran): narrative farming, AI generated images & Audio clips, hack & leaks, paying witting &…

New piece on TA427 (overlaps with Emerald Sleet, APT43, the K-word) 🇰🇵🇰🇵

Lots of benign email conversations to gather strategic information from NGOs, think tanks, and academics in the DPRK research space 📧📮

DMARC, typosquats, and solicitation oh my!

proofpoint.com/us/blog/threat…

The purpose of the attacker was to pivot internally. To steal sensitive data (Active Directory database, DPAPI keys, event logs and browsers cookies/creds). They mainly used VPN, VPS, compromised routers, and compromised AWS bucket as infrastructure. 4/4

🫵👇

Fascinating set of activity I was happy to research - Not your everyday hack-and-leak! 👇

Tired of those package tracking #smishing messages? In this blog post, we explore some techniques for tracking those #phishing domains using unique fingerprinting techniques developed by Validin.

Also, we drop 709 phishing domains and IPs. Enjoy!

validin.com/blog/unwrappin…