CloudSEK Logo
Products
Nexus AI
AI Command center & Cyber Risk Quantification
XVigil
Digital Risk protection
BeVigil
Attack Surface monitoring
SVigil
Third party Risk Monitoring
Threat Intelligence
Cyber Threat Intel, IAVs & More
BeVigil Community
Application Scanner
Exposure
Check if your organisation's data is in a data breach
AIVigil
AI Attack Surface Monitoring
Solutions
Cyber Threats Monitoring
Surface, Deep, and Dark Web Monitoring
Deep and Dark Web Monitoring
Threat Monitoring Across the Hidden Web
Brand Threats Monitoring
Proactive Brand Protection
Infrastructure Monitoring
Catch Risks Before Attacks
Partner Secret Scanning
API/secret Exposure Detection
BeVigil Jenkins CI
BeVigil-CI secures your mobile app builds
BeVigil OSINT CLI
Unified CLI/Python for BeVigil OSINT
BeVigil Asset Explorer
Threat Monitoring Across the Hidden Web
Resources

Resources

Blog
Stay updated with the latest cybersecurity news, insights, and industry trends
Threat Intelligence
Get up and running on new threat reports and techniques
Knowledge Base
Basics of Cybersecurity and see more definitions
Whitepapers & Reports
The content team broke their backs making these reports
Customer stories
Learn how our customers are making big changes. You have got good company!
CloudSEK Academy
Be CloudSEK certified!

Company

Integrations
We are more connected than you know. Explore all Integrations
Partners
100s of partners and one Shared goal; Secure future for all us
About us
Learn about our story and our mission statement
Life at CloudSEK
A sneak peek at the awesome life at CloudSEK
Careers
We're hiring!
We are in love with undeniable talent. Join our team!
Events
We're hiring!
Explore webinars, panels, and meetups powered by CloudSEK
Legal
All the boring but necessary legalese that legal made us add.
Compliance
Proven compliance with top security benchmarks.

Latest Whitepaper

CloudSEK: Global Threat Landscape Report 2025
Adversary Intelligence
24 Mar 26
CloudSEK: Global Threat Landscape Report 2025
Free Tools
URL Analyser
Scan for malicious links and phishing threats
Deepfake Analyser
Spot manipulated videos and deepfake scams
ThreatLens
A live feed of scams, phishing, and brand abuse
Mobile App Analyser
Detect security flaws in mobile apps
Asset Explorer
Gain insights on digital assets and subdomains
Data Exposure Checker
See if your organization's data is on the Dark Web
BeVigil Asset Explorer
Threat Monitoring Across the Hidden Web
Log in
Schedule a Demo
Schedule a Demo
CloudSEK TRIAD

CloudSEK TRIAD

CloudSEK Threat Research and Information Analytics Division

Blogs & Articles

Read all Blogs from this Author

Blog image
Inside a Tor Backed Supply Chain Worm

CloudSEK TRIAD uncovered a sophisticated npm supply chain attack using a typosquatted package, crypto-javascri, to mimic crypto-js. The malware steals npm and GitHub credentials, hijacks maintainer accounts, republishes trojanized packages, and uses Tor-based command-and-control. The campaign targets Linux developer systems and CI/CD environments, creating serious downstream supply chain risk.

Read More
Blog image
RedSun: Windows 0day when Defender becomes the attacker

RedSun exposes a critical logic flaw in Windows Defender that allows a standard user to escalate privileges to SYSTEM without admin rights or kernel exploits. By exploiting a missing reparse point validation during file restoration, attackers can redirect Defender’s write operation into System32 and execute arbitrary code. The attack is reliable, unpatched, and affects modern Windows systems with Defender enabled, making it a serious security concern.

Read More
Next

Whitepapers and Reports

Read all Whitepapers and reports from this Author

Threat Landscape Report for Middle East 2024

Read More
cloudsek_whitepaper_download
Beyond the Storefront: E-commerce and Retail Threat Insights

The report "Beyond the Storefront: E-commerce and Retail Threat Insights" highlights the growing cyber threats to the e-commerce and retail sectors, including a surge in ransomware attacks, hacktivist activities, and data breaches. It emphasizes the need for enhanced security measures as these industries face increasing risks from financially motivated attacks and politically driven hacktivism.

Read More
MichaMichaBot: Unveiling the Exploitation of Missing "X-Frame-Options" HTTP Headers in Phishing Attacks

The report "MichaMichaBot: Unmasking the Threats Exploiting Missing 'X-Frame-Options' Headers" reveals how cybercriminals exploit this vulnerability to launch phishing attacks by embedding legitimate websites in iframes with fake login panels. It provides insights into these attack methods and practical strategies to secure digital assets against such threats.

Read More
Unveiling Maorrisbot: The Inner Workings of an Android Trojan Malware

Our whitepaper, "Unveiling Maorrisbot: The Inner Workings of an Android Trojan Malware," explores the sophisticated methods and impacts of Maorrisbot malware, offering insights and strategies to protect your devices. Download it to learn how to safeguard against this significant Android threat.

Read More

Knowledge Base

Read all knowledge base articles from this Author

No Knowledge base articles found.
Join our newsletter
We’ll send you a nice letter once per week. No spam.
Untitled UI logotextLogo
Product
XVigil
BeVigil
SVigil
New
Tutorials
Pricing
Releases
Company
About us
Careers
Press
News
Media kit
Contact
Resources
Blog
Newsletter
Events
Help centre
Tutorials
Support
Use Cases
Startups
Enterprise
Government
SaaS
Marketplaces
Ecommerce
Social
Twitter
LinkedIn
Facebook
GitHub
AngelList
Dribbble
© 2077 Untitled UI
PrivacyGDPRDisclosure of Vulnerability
Products
Nexus AI
XVigil
BeVigil
SVigil
Threat Intelligence
CloudSEK Exposure
AIVigil
Mobile App
Google Play button to download App
Solutions
Cyber Threats Monitoring
Dark Web Monitoring
Brand Threat Monitoring
Infra Threat Monitoring
Partners Secret Scanning
BeVigil Jenkins CI
BeVigil OSINT CLI
BeVigil Asset Explorer
Takedowns
Resources
Blogs and Articles
Threat Intelligence
Whitepapers and Reports
Knowledge Base
Integrations
Community
Discord Community
Student Challenge
Company
About us
Customers
Partners
Referral Program
Life at CloudSEK
Secure Sips
Careers
Announcements
Press
Contact Us
CloudSEK Logo
Linkedin Icon

At CloudSEK, we combine the power of Cyber Intelligence, Brand Monitoring, Attack Surface Monitoring, Infrastructure Monitoring and Supply Chain Intelligence to give context to our customers’ digital risks.

GDPR Policy
Privacy
Vulnerability Disclosure
DPA
Cookies Policy
Sitemap
EULA