Featured Threat Research

Elephant Beetle: Uncovering an Organized Financial-Theft Operation

For the past two years, Sygnia’s Incident Response (IR) team has been methodically tracking the Elephant Beetle threat group, an organized, significant financial-theft...

All Resources

Threat Report

Featured Threat Research

Elephant Beetle: Uncovering an Organized Financial-Theft Operation

Sygnia’s IR team has identified the Elephant Beetle threat group, an organized, significant financial-theft operation threatening global enterprises. Read More

Sygnia Blog

Adversary Security Blog Post

It's a Threat Actor's Paradise: Getting Ahead of Attackers in 2022

Achieving cyber resilience in the hostile attack terrain comes down to an organization’s ability to flip the asymmetry between them and the threat actors. Read More

Blog Post

Featured Incident Response Threat Hunting

End-to-End LOG4SHELL Hunting Strategy

The purpose of this blog is to help defenders hunt for Log4Shell exploitation attempts, distinguish between failed and successful attempts and identify post-exploitation activities. Read More

Advisory

Incident Response Threat Hunting

Sygnia Advisory: Log4Shell Remote Code Execution

A critical remote code execution vulnerability in a software logging package called “Log4Shell” (tracked as CVE-2021-44228) was published, potentially impacting millions of devices world wide. The vulnerability allows external threat actors to penetrate enterprise networks and cloud environments/platforms Read More

Press Release

Incident Response

SYGNIA RECOGNIZED IN 2021 GARTNER® MARKET GUIDE FOR DIGITAL FORENSICS AND INCIDENT RESPONSE SERVICES

Sygnia has been recognized as a Representative Vendor in 2021 Gartner Market Guide for Digital Forensics and Incident Response Services. Read More

Press Release

SYGNIA EXPANDS INTO EUROPE TO MEET INCREASING CLIENT DEMAND

Following impressive growth, Sygnia opens its first European office in London. Read More

Blog Post

Incident Response Threat Hunting

Recent Waves of Phishing Attacks Overpowering Two-factor Authentication

Phishing campaigns have always been, and still are a leading attack vector for threat actors around the world. On top of that, with the new work-from-home model, phishing attacks have evolved in prevalence and sophistication. Read More

Threat Report

Threat Research

Praying Mantis An Advanced Memory Resident Attack

Sygnia researchers identified an advanced threat actor targeting high profile US organizations, using nation-state attack methods, and operating in-memory. Read More

Community Tool

Adversary Security

Cloud Scout: a New Open Source Tool for Cloud Security

Sygnia released Cloud Scout, an open-source tool for cloud security to help map cloud and hybrid cloud environments, identify and visualize cross platform attack paths & vulnerabilities, and enhance overall resilience. Read More

Threat Report

Incident Response Threat Research Threat Hunting Ransomware

Lazarus Group’s Mata Framework Leveraged To Deploy TFlower Ransomware

In a recent double extortion ransomware attack investigated by Sygnia, the threat actor leveraged a new and previously undocumented variant of MATA to distribute and execute the TFlower ransomware. Read More

Advisory

Incident Response Threat Hunting Ransomware

Kaseya Ransomware Supply Chain Attack

Get a deep dive into the Kaseya ransomware attack, and how you can deploy effective defense strategies. Read More

Advisory

Incident Response Threat Hunting Ransomware

Detection And Hunting Of Golden SAML Attack

Get actionable insights on how to detect a Golden SAML attack vector and an overview of the compromise at SolarWinds. Read More

Advisory

Incident Response Threat Hunting

Demystifying The PrintNightmare Vulnerability

Learn about the PrintNightmare vulnerability, why it's such a cause for concern and how to mitigate the risk. Read More