Recent BlackBerry Threat Research and Intelligence Alerts
Threat Group FIN7 Targets the U.S. Automotive Industry
BlackBerry threat researchers recently uncovered a cyberattack against a U.S. automotive manufacturer. Russian advanced persistent threat (APT) group FIN7 targeted members of the company’s IT team with spear-phishing emails that promised a free scanning tool. The lure allowed FIN7 to run a well-known backdoor and gain an initial foothold within the network. BlackBerry threat researchers found evidence this may be part of a wider campaign.
Top 5 Cyberattack Targets: Industries Most Likely to Be Attacked
The latest BlackBerry Global Threat Intelligence Report took a dual approach to analyzing the most frequently attacked industries in cyberspace. The first slice of this data breaks out the top five industry verticals that threat actors are targeting, along with common attacker motivations. The second slice of this data considers how the Cybersecurity and Infrastructure Security Agency (CISA) defines critical infrastructure, leading to some insightful results.
LightSpy Returns: Renewed Espionage Campaign Targets Southern Asia, Possibly India
BlackBerry threat researchers are reporting on the resurgence of LightSpy. LightSpy is a sophisticated iOS implant, first reported in connection with a watering-hole attack againstApple device users. It's a surveillance toolset that primarily focuses on exfiltrating victims’ private information, including hyper-specific location data and sound recording during voice-over IP (VOIP) calls. This makes it particularly dangerous to victims. BlackBerry researchers have several key findings.
Live and On-Demand Webinars
Digital Hijacking at Sea: Unveiling a Cyber Attack Scenario in the Red Sea
Experts explore a cyber hijacking scenario in the Red Sea, showcasing how AI from BlackBerry and Dryad Global can detect and prevent maritime cyberattacks. Gain insights from leaders in cybersecurity and maritime operations; learn about threats facing the industry and AI's role in proactive threat detection and operational efficiency.
Led by Dr. Rory Hopcraft of the University of Plymouth’s CyberSHIP lab, Corey Ranslem, CEO of Dryad Global, and Ismael Valenzuela, VP of Threat Research and Intelligence at BlackBerry Cybersecurity, this webinar is tailored for CSOs, maritime security professionals, vessel operators, and anyone vested in maritime operations.
Led by Dr. Rory Hopcraft of the University of Plymouth’s CyberSHIP lab, Corey Ranslem, CEO of Dryad Global, and Ismael Valenzuela, VP of Threat Research and Intelligence at BlackBerry Cybersecurity, this webinar is tailored for CSOs, maritime security professionals, vessel operators, and anyone vested in maritime operations.
The Rise of Novel Malware: What It Is, and How AI Can Stop It
The BlackBerry Threat Research and Intelligence team reveals new data that proves cyber threat actors are increasingly deploying novel malware, which has not been seen before, to reduce the risk of detection. In this BlackBerry LIVE discussion, BlackBerry leaders define the threat, quantify it, and explain how countermeasures like AI in cybersecurity can defend against these types of attacks. Join Ismael Valenzuela, BlackBerry VP of Threat Research and Intelligence, and Shil Sircar, SVP of Product Engineering and Data Science at BlackBerry, as they discuss what’s new.
BlackBerry Global Threat Intelligence Report — March 2024 Edition
The latest report from the BlackBerry Threat Research and Intelligence team—covering September to December 2023—shows a 19% increase in cyberattacks per day over the previous period. The report indicates threat actors are increasingly exploiting internet-connected critical infrastructure like power, water and transportation systems.
Meet the Global Team Representatives
Ismael Valenzuela
Vice President, Threat Research and Intelligence
Cesar Vargas
Director, Applied Researcher
Thom Ables
Director, Threat Research
Geoff O’Rourke
Senior Technical Lead
Natasha Rohner
Principal Threat Research Publisher
Masaki Kasuya
Principal Threat Researcher
Dean Given
Principal Threat Researcher
Eoin Healy
Principal Threat Researcher
Jacob Faires
Principal Threat Researcher
Alexandra Mozil
Senior Threat Researcher
Dmitry Melikov
Threat Researcher II
Pedro Drimel
Threat Researcher, Consultant