Threat Analysis

Malware targeting Russian defense contractor

Malware Targeting a Russian Defense Contractor

Findings Summary: Malware Targeting a Russian Defense Contractor On 14 December, DeepSeas automated scanning and analysis encountered a unique piece of malware targeting a Russian defense contractor on VirusTotal. The file in question, listed as 567000-13.rar, contains a .PDF file of the same name, which was likely directed toward an

Read More
Cyber threats: DeepSeas experts share what's ahead of us in 2024

A Cyber Year-in-Review & Look-Ahead: Cybersecurity in 2023 & 2024

Each year brings innovations in threats from cyber criminals. Following breakthroughs in 2023 that changed the threat environment, 2024 promises a new generation of threats leveraging AI, data theft, spear phishing, sophisticated ransomware, and more.  Leveraging research from TechTarget’s Enterprise Strategy Group and real-world expertise from DeepSeas, the special report

Read More
Detection and Mitigation for Vulnerability in JetBrains’ TeamCity Servers

Nation-State Actors and Cyber Criminals Exploiting JetBrains’ TeamCity Vulnerability CVE-2023-42793

DeepSeas is aware of reports that Russian nation-state actors, specifically APT29, have been exploiting an authentication bypass vulnerability in JetBrains’ TeamCity servers. Public and bespoke detection logic for the payloads associated with this activity have been deployed. Background – JetBrains TeamCity Vulnerability CVE-2023-42793 First identified and reported to JetBrains in

Read More

Active Exploitation of Unpatched Citrix Devices

On 18 July 2023, Citrix issued an advisory stating that a Remote Code Execution (RCE) vulnerability in older installations of NettScaler ADC was being actively exploited in the wild. The RCE vulnerability was assigned CVE-2023-3519 with a CVSS severity score of 9.8. There were 2 additional CVEs disclosed in the

Read More
DeepSeas Thought Leadership Service Hijacking Nuances

Service Hijacking Nuances

Let’s do a deeper dive into the nuances of service hijacking  – specifically the two primary variations of the technique and practical insights on how to detect them. The aim here is to equip you with the knowledge needed to identify these stealthy attacks and fortify your defenses. Awareness and knowledge

Read More

Join our Team

21% of the DeepSeas crew are Veterans or Active Military Reservists. Join our talented crew of cyber experts.

The DeepSeas are calling. Schedule your virtual consult.

You pick the time and day. We'll be ready to answer your questions.