Flashpoint Intelligence

Name: Flashpoint Intelligence
Address: 25 West 39th Street, New York, NY, 10003, US
Telephone: (888) 468-3598

Home
United States
New York, NY
Flashpoint Intelligence

To learn more about Flashpoint, visit https://www.flashpoint-intel.com/ or follow us on Twitter at .

Flashpoint is the globally trusted leader in risk intelligence for organizations that demand the fastest, most comprehensive coverage of threatening activity on the internet. Trusted by governments, global commercial companies, and educational institutions, Flashpoint helps organizations protect their most critical assets, infrastructure, and stakeholders from security risks such as cyber threats,

ransomware, fraud, physical threats, and more. Leading security practitioners—including cyber threat intelligence (CTI), vulnerability management, DevSecOps and vendor risk management teams—rely on the Flashpoint Intelligence Platform to proactively identify and mitigate risk and stay ahead of the evolving threat landscape.

03/30/2023

🤝 Following an unexplained disappearance earlier this year, the notorious 2easy darknet market has hinted at a possible comeback.

〰️ Our latest blog delves into the context surrounding 2easy's disappearance and the potential for its revival, analyzing how 2easy's return could impact the larger fraud ecosystem.

📍 Read more here: https://flashpoint.io/blog/2easy-fraud-ecosystem/

🛡️ And to learn more about how your Fraud team can equip themselves to handle an advancing threat landscape, visit our site: https://flashpoint.io/solutions/fraud/

09/27/2022

📣 Flashpoint hit a major milestone, with VulnDB now covering over 300,000 vulnerabilities affecting all manners of IT, IoT, and third-party libraries and dependencies.

🖼️ Having the full vulnerability intelligence picture is vital to effectively combat risk. However, organizations may not be aware that the full picture looks drastically different depending on where they look.

🛑 Organizations heavily dependent on CVE/NVD might be shocked to discover that it misses nearly 33% of known vulnerabilities! What else does CVE/NVD miss?

1️⃣ CVE/NVD misses 31% of known CVSSv2 scored high-to-critical vulnerabilities

2️⃣ CVE/NVD misses 33% of known, remotely exploitable vulnerabilities

3️⃣ CVE/NVD misses 38% of known vulnerabilities with a public exploit

👉 Click here to see side-by-side comparisons on a more granular level: https://bit.ly/3SAGZTn

📉 What causes this delta? Learn more here: https://bit.ly/3DSqvCj

09/27/2022

📣 This Thursday, 9/29, join Flashpoint virtually for the Cyber Security Healthcare & Pharma Summit.

Flashpoint Analyst Ashley Allocca will be a panelist on the ‘The Healthcare & Pharma Breach’ session, which will address the top risks facing the Healthcare sector in 2022 and dive into what the future landscape of breaches will look like.

For complimentary admission, use code FLASHPOINT22 to register here: https://bit.ly/3LTPcAc

09/23/2022

📌 Real-time data from social media platforms and illicit communities is vital to gaining an understanding of the domestic public response to Putin’s military mobilization declaration—a significant risk from Russia’s leader.

👉🏼 Initial responses to the mobilization among the general population reflected shock and panic. As of September 22, Russian authorities have arrested more than 1,300 people across the country at protests against mobilization.

⚠️ One anthropologist counted more than 160,000 posts on social media platforms before mobilization even began in practice, around 20-30 percent of which were negative, in spite of the risks of prosecution that such posting entails in Russia.

📣 Russian citizens have been posting photos and videos of angry verbal exchanges with recruitment officers, as well as queues of vehicles near border crossings and chaotic scenes from before and after draftees were taken away in buses or aircraft.

09/23/2022

🗞️ On September 18, a cyber threat actor posted on an online forum claiming to have hacked Rockstar Games, the creator of the popular and controversial Grand Theft Auto (GTA) series. The hacker has been allegedly tied to LAPSUS$—the prolific extortionist group.

🔍 Flashpoint analysts have been monitoring illicit channels regarding this incident and found an investigative lead potentially detailing how the breach occurred, as well as its scope.

👥 A threat actor claiming to be in close communication with the original perpetrator has provided screenshots demonstrating their access to compromised data, while also stating:

⛔ Rockstar Games was compromised from an internal Slack channel

👤 This was done by social engineering a Rockstar employee located in India, gaining access to Rockstar's Okta

🛑 The perpetrator stole source code for other Rockstar titles, such as 'Red Dead Redemption 2' and 'Red Dead Redemption 3'

👉 Click here for the latest details: https://bit.ly/3xIGVZJ

📌 Learn more about LAPSUS$ here: https://bit.ly/3BHUXMs

09/22/2022

: Our APAC intelligence team has put together a fantastic primer on understanding the growing tension between the US 🇺🇸 and Chinese 🇨🇳 governments—over . We've laid out 5 key indicators that we'll be tracking over the coming months, especially as China's National People's Conference nears.

📌 Read more on our blog: https://flashpoint.io/blog/5-reasons-taiwan-is-a-growing-source-of-us-china-tension/

09/22/2022

📌 Research shows that cryptojacking attacks rose to 66.7 million in the first six months of 2022. How can organizations best protect themselves?

1️⃣ Educate personnel to report and avoid suspicious emails, or any other phishing attempts.

2️⃣ Identify and remediate vulnerabilities affecting organizational assets.

3️⃣ Create a Software Bill of Materials (SBOM) to gain visibility into the third-party libraries and OSS that comprise software.

👉 Click here to learn more: https://bit.ly/3C14Oyn

09/21/2022

: al-Qaeda is yet to name a new leader, following the death of Ayman al-Zawahiri. Our intelligence team dives into a al-Zawahiri’s influence and legacy, plus how the future of al-Qaeda may take shape in the coming months: https://lnkd.in/gzbEXzQD

👀 And for more on our coverage, read our blog: "20 Years After 9/11: Tracking the Evolution of Jihadism" https://lnkd.in/geG4rt5x

09/20/2022

📣 The US Department of Treasury has designated Task Force Rusich, a neo-Nazi paramilitary group that has participated in combat alongside Russia’s military in Ukraine.

💡 Mercenary groups like Task Force Rusich often engage in online fundraising activities, raising money for military and tactical equipment, medicine, and care for the wounded. Most of the fundraising activities that we observe are occurring through Russian bank cards—but these groups also use .

👉🏼 Alexey Milchakov and Yan Petrovsky, who founded the militia in 2014, were included on an updated SDN list from OFAC, which disclosed five cryptocurrency wallet addresses connected to Task Force Rusich.

‣ One Rosich Ethereum donation wallet, which the US Treasury disclosed on September 15, provides a window into how Russian mercenary groups transact using cryptocurrency.

‣ This wallet was newly funded on September 7 with about .67 Ethereum (~$922).

‣ Two days later, with fresh funds at its back, Task Force Rusich posted a list of the military equipment it needed for an unspecified unit in the “Northern Military District”—likely code for Kharkiv, Sumy, and Kyiv regions, which includes the Ukrainian cities of Kharkiv and the capital, Kyiv.

‣ Then, two days after that, on September 11, a Task Force Rusich ally announced that the same wallet had received donations of more than $20,000.

🔥 Flashpoint’s intelligence team—which includes support to anti-money laundering (AML), counter-terrorist financing (CTF), and know-your-customer (KYC) compliance programs—has been aware of and its illicit funding effort since the beginning of the full-scale invasion of Ukraine.

Read our latest blog here: https://flashpoint.io/blog/russia-neo-nazi-mercenary-groups-pmcs-and-illicit-financing/

09/20/2022

📌 Last month, there were 2,236 unique instances of insider-related threat activity. Here's what we know:

📣 Insiders are broadcasting their services across multiple illicit marketplaces.

👥 70% of August's insider threat activity came from employees advertising their services to threat actors.

📱 Mobile telecommunications providers are more at risk from fraud operations and other insider-related threats.

🔍⁉️ To combat insider threats, organizations need to detect insider activity before any data is sold, or any damage occurs. By leveraging Flashpoint's data and collections, organizations can:

1️⃣ Understand threat actor motivations and tactics, helping to build a more effective defensive posture and limit further exposure.

2️⃣ Get comprehensive access to online illicit communities to quickly detect insider threats in the forums and marketplaces where IP is sold.

09/19/2022

📌 Last week, the US Office of Management and Budget announced that all federal agencies are now required to create an inventory of all software within 90 days. What does this mean for you?

1️⃣ Organizations providing software to federal agencies will have to prove that their products do not contain backdoors or exploitable, critical vulnerabilities.

2️⃣ Organizations will likely have to provide a Software Bill of Materials (SBOM) that lists all the components used in their products—including open source software (OSS) and third party libraries.

💪 Therefore, having comprehensive vulnerability intelligence is critical. Why?

🛑 CVE/NVD is currently missing over 95,000 vulnerabilities, with many affecting major vendors and products.

💢 CVE/NVD lacks significant coverage of OSS and third-party libraries, as well as important vulnerability metadata.

👉 Want to get the full vulnerability intelligence picture? Learn more here: https://bit.ly/3DSqvCj

Click here to learn how Flashpoint can help maintain quality SBOMs: https://bit.ly/3ey3kSM

09/16/2022

The Flashpoint team is on-site today at the intelligence and national security summit in National Harbor, MD! Stop by kiosk #169 and let's get to work. What's top-of-mind for us is the role of open-source intelligence in enabling teams to accomplish their security missions across multiple use cases, including:

📌 Counterterrorism
📌 Mis-/disinformation
📌 Crisis monitoring
📌 Geopolitical risk
📌 Supply chain risk
📌 Sentiment analysis
📌 Executive protection.. and more.

Learn more about Flashpoint's Nationals Security Solutions here: https://flashpoint.io/solutions/public-sector-and-national-security/flashpoint-national-security-solutions/

https://intelsummit.org/

Address

25 West 39th Street
New York, NY
10003

Telephone

(888) 468-3598

Website

http://www.flashpoint.io/

Alerts

Be the first to know and let us send you an email when Flashpoint Intelligence posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Flashpoint Intelligence

03/30/2023

09/27/2022

09/27/2022

09/23/2022

09/23/2022

09/22/2022

09/22/2022

09/21/2022

09/20/2022

09/20/2022

09/19/2022

09/16/2022

Address

Telephone

Website

Alerts

Shortcuts

Share

Category