Threat intelligence

From intent to action: what direct engagement actually requires

Direct engagement requires more than intent. It requires an environment designed for the mission.

Collecting social media intelligence without exposure: a guide for security teams

Why passive threat intelligence isn't enough in 2026

As adversaries move from access to action in minutes, security teams need intelligence with real-time context. Explore how direct…

Navigating China's strategic landscape: a conversation with John Costello

China’s technology strategy prioritizes scale, commoditization, and IP acquisition. Learn how analysts can track risk, OSINT barriers, and…

A guide to IT risk exposure

IT risk exposure refers to the potential impact an organization faces if its information systems or data are compromised. Understanding IT…

Cyber Intel Brief: VMware zero-day, manufacturing breaches, AI malware

This week’s Cyber Intel Brief uncovers Chinese zero-day exploitation of VMware systems, coordinated attacks on manufacturing networks, and…

What is Pastebin? A guide for cyberthreat intelligence research

Learn what Pastebin is and how cyberthreat intelligence researchers use it to detect data leaks, monitor threat activity, and uncover…

Exploring the surface, deep, and dark web: what investigators need to know

Understand the differences between the surface, deep, and dark web. Learn how investigators can safely access and analyze data across all…

Cyber Intel Brief: Cisco ASA zero-days, supply chain breaches, ransomware attacks

This week’s Cyber Intel Brief covers Cisco ASA zero-day exploits with ROM-level persistence, major supply chain breaches and ransomware…