Threat Intelligence & Research
Security reporting worth your time
Original research and analysis on Apple, Android, Linux, Windows, and Microsoft 365/Azure security โ plus investigations into active scams, fraud, and the people running them. Every piece is independently verified before it runs.
What we cover
Apple
macOS, iOS, iCloud, and Apple silicon vulnerabilities and advisories.
Android
Android platform and OEM security bulletins, malicious apps, and Play Store abuse.
Linux
Kernel CVEs, distro advisories, and server/infrastructure security.
Windows
Windows vulnerabilities, patch analysis, and enterprise endpoint threats.
Microsoft 365 & Azure
Microsoft 365, Entra ID, and Azure cloud security incidents and misconfigurations.
Original Research
Original investigations we run ourselves โ not just aggregated news.
General
Scams, fraud, phishing campaigns, and the people and networks behind them.
Inside DarkForums: BreachForums' successor
DarkForums absorbed BreachForums' displaced community after 2025 law-enforcement takedowns and remains un-seized in 2026, now a tier-1 monitoring target since leaked data surfaces there weeks before official breach notifications.
Fuxowin.com exposed: how a 'crypto casino' holds your balance for ransom
An eight-day-old domain, a stolen corporate identity from a real licensed operator, and a support chatbot that contradicts itself and leaks Chinese-language prompts โ inside the advance-fee scam machinery behind Fuxowin.com.
Inside JadePuffer: the first ransomware attack an AI agent ran almost entirely by itself
Researchers at Sysdig documented an intrusion where an AI agent broke into a server, moved laterally, adapted to its own mistakes in real time, and encrypted a production database, writing its own ransom note along the way. Here is exactly how it happened, and why it is not quite as autonomous as the headlines suggest.