Explore our blog

Most cybercrime investigations do not start with a confession or a witness. They start with a fragment: a wallet address, a screenshot, a timestamp that may or may not be real, an IP that belonged to someone for forty minutes. The gap between that fragment and a named...

Your application passed the web pentest. Your infrastructure is patched. But you added an AI assistant to your platform six months ago, and nobody has tested it. That is the gap most security teams are not thinking about yet. In a recent engagement, Zerotak assessed...

When Generic Threat Intelligence Isn't Enough Not all cybersecurity challenges are created equal. A retail company managing phishing risks and a national defense agency operate in fundamentally different threat environments. The tools they use and the intelligence...

Throughout our investigation, we identified hard-coded C2 IP addresses embedded in Open Source Projects through multiple methods: 1. Exploits and Proof-of-Concept (PoC) code Several public PoCs included "hidden callbacks pointing to external servers, often without any...

We are excited to announce the launch of the Cyber Jungle Intelligence Series, a new line of investigative threat-intelligence reports designed to navigate the dense, unpredictable, and often hostile terrain of the cyber landscape. Much like a real jungle, today's...

We are pleased to announce the development of a Security Operations Center (SOC) in Dubai, United Arab Emirates, to offer SOC-as-a-Service (SOCaaS) solutions. This initiative aims to enhance cybersecurity capabilities in the region by providing advanced threat...