Threat Intelligence · 71 articles

Threat Intelligence

Recent CVEs, active exploitation campaigns, threat actor TTPs, IOC analysis.

Security Guides

Telegram OSINT for Threat Intelligence

Telegram OSINT — discovery (tgstat, telegago), monitoring with sock-puppet account, telethon API automation, threat-intel-relevant channels (ransomware blogs, IAB, phishing kits, Indian fraud…

Apr 25, 2026 · 2 min read
Security Guides

Discord OSINT for Security Investigations

Discord OSINT — server discovery via disboard, Discord ID timestamp extraction, username cross-platform correlation (Sherlock), Lapsus$-style insider recruitment monitoring.

Apr 25, 2026 · 2 min read
Security Guides

Social Media OSINT: LinkedIn, Twitter/X, Instagram

Social media OSINT for org chart (LinkedIn), technical leakage (X), lifestyle / geolocation (Instagram). Cross-platform username correlation, OPSEC, Indian-context considerations.

Apr 25, 2026 · 2 min read
Security Guides

Dark Web OSINT: Tor, I2P, and Investigation Workflow

Dark-web OSINT for security teams — Tor / I2P setup, ransomware blogs, marketplaces, IAB ads, Indian-context findings (leaked Aadhaar/PAN datasets), automated monitoring…

Apr 25, 2026 · 2 min read
Security Guides

Geolocation and Chronolocation Techniques for OSINT

Geolocation methods — EXIF, reverse search, visual cues, street view matching, satellite imagery. Chronolocation via sun/shadow position, advertisements, vehicles, vegetation, weather records.

Apr 25, 2026 · 2 min read
Security Guides

AI Model Poisoning: Training, Fine-Tuning, RAG

Model poisoning variants — training data, fine-tuning, RAG document poisoning, backdoor attacks. Detection (provenance, anomaly, activation analysis). Defences (data hygiene, robust training,…

Apr 25, 2026 · 3 min read
Security Guides

Customer Account Takeover (ATO) in Indian Banking: Kill Chain and Detection

The 7-step ATO kill chain — credentials, auth, OTP capture, account exploration, beneficiary addition, transaction, mule chain. SQL detection at each step…

Apr 25, 2026 · 2 min read
Security Guides

UPI Fraud Patterns in 2026: Collect-Request, QR-Swap, SIM-Swap

Dominant UPI fraud patterns — collect-request scams, QR-swap at merchants, SIM-swap leading to OTP capture, KYC scams, mule account chains. NPCI controls…

Apr 25, 2026 · 3 min read
Security Guides

Indian BFSI Threat Actor Landscape 2026

Four threat-actor categories targeting Indian BFSI in 2026 — financially-motivated ransomware (RansomHub, Akira), BEC / wire-fraud groups, nation-state aligned APTs, insider threats.…

Apr 25, 2026 · 2 min read
Red Teaming

CitrixBleed (CVE-2023-4966): Why Patching Wasn’t Enough

CitrixBleed leaked active session tokens that survived patching — post-patch session hijacking persisted for weeks. The bug, IoCs, the required session-termination playbook,…

Apr 25, 2026 · 3 min read
1 3 4 5 6 7 8