Godfather: A banking Trojan that is impossible to refuse

Scam-free Christmas: 8 online scams to protect your customers from

Group-IB's Fraud Intelligence: How can you find mule accounts lurking in your digital payments?

Hired hand: Scammers mimic Saudi manpower provider

OPERA1ER APT in Africa

Treasure trove. Alive and well point-of-sale malware

DeadBolt ransomware: nothing but NASty

Take control of your shadow IT

Scam is rising

Letting off steam

Roasting 0ktapus: The phishing campaign going after Okta identity credentials

APT41 World Tour 2021 on a tight schedule

Switching side jobs

Challenge accepted

Fake investment scams in Europe

Under the Hood. Group-IB Managed XDR

Group-IB introduces the Unified Risk Platform

Fat Cats

We see you, Gozi

Thousands of IDs exposed in yet another data breach in Brazil

"We find many things that others do not even see"

Swiss Army Knife Phishing

SideWinder.AntiBot.Script

Scamopedia

Old Gremlins, new methods

Scammers make off with $1.6 million in crypto

Mitigating Spring4Shell with Group-IB

Empty Box

Lost & Found: Group-IB Unveils AssetZero

Cleaning the atmosphere

Shedding light on the dark web

How MITRE ATT&CK helps users of Threat Intelligence & Attribution

Mitigating Log4Shell in Log4j with Group-IB

Ready-made fraud

Inside the Hive

The Darker Things

Cannibal Carders

RUNLIR - phishing campaign targeting Netherlands

Scamdemic outbreak

Under the hood. Group-IB Threat Intelligence & Attribution. Part 2

Bold ad campaign

It's alive!

Prometheus TDS

The Art of Cyberwarfare

Under the hood. Group-IB Threat Intelligence & Attribution

The Fraud Family

The Brothers Grim

REvil Twins

Big airline heist: APT41 likely behind a third-party attack on Air India

FontPack: A dangerous update

Connecting the Bots: Hancitor fuels Cuba Ransomware Operations

GrelosGTM group abuses Google Tag Manager to attack e-commerce websites

Lazarus BTC Changer

Deep water: exploring phishing kits

When Karma Comes Back

Kremlin RATs from Nigeria

Masters of disguise

JavaScript sniffers’ new tricks: Analysis of the E1RB JS sniffer family

Inside Classiscam

The source of everything: digital forensic examination of incidents involving source code leaks

New UltraRank attacks

The footprints of Raccoon: a story about operators of JS-sniffer FakeSecurity distributing Raccoon stealer

The Locking Egregor

Group-IB Fraud Hunting Platform

Big Game Hunting: Now in Russia

Lock Like a Pro: Dive in Recent ProLock’s Big Game Hunting

Digital forensics specialist's bookshelf

IcedID: When ice burns through bank accounts

ATT&CKing ProLock Ransomware

PerSwaysion Campaign

Reconstructing User Activity for Forensics with FeatureUsage

Chromium-based Microsoft Edge from a Forensic Point of View

Hunting for Nextcloud Cloud Storage Forensic Artifacts on Endpoints

A Shortcut to Compromise: Cobalt Gang phishing campaign

Hunting for Attacker’s Tactics and Techniques With Prefetch Files

Group-IB unveils its graph

Massive malicious campaign by FakeSecurity JS-sniffer

WhatsApp in Plain Sight: Where and How You Can Collect Forensic Artifacts

RDoS attacks by fake Fancy Bear hit banks in multiple locations

No Time to Waste: How Windows 10 Timeline Can Help Forensic Experts

50 Shades of Ransomware

Tools up: the best software and hardware tools for computer forensics

Following the RTM