Team Cymru

For 15 years, RISE has been at the forefront of the fight against cybercrime—bringing together the brightest minds in law enforcement, government and enterprise teams to share intelligence, disrupt adversaries, and strengthen global security. Join us on April 8-9, 2025, at RISE USA in San Francisco, co-hosted by Stripe. This is more than an event—it’s a chance to make a real impact in the cybersecurity landscape. Attendees will gain TLP-RED intelligence, engage in expert-led workshops, and collaborate on critical topics like APT operations, AI-powered OSINT, ransomware negotiations, and advanced intrusion detection. It’s FREE to attend, but space is limited. Be part of the mission. Apply now: https://ow.ly/qCt450V3umM #cybersecurity #teamcymru #RISEUSA #securityevent #R15E

Transform Your SOC's Capabilities with Team Cymru + Microsoft Security Copilot We're excited to announce our new Pure Signal Scout Plugin for Microsoft Security Copilot is now available! This integration transforms how SOC teams investigate threats by providing immediate, context-rich, AI-powered responses directly within Copilot. Now you can: -Cut through the noise with real-time threat intelligence -Leverage Microsoft's AI capabilities combined with our unparalleled threat data -Seamlessly query our massive Pure Signal? data ocean Security is truly a team sport, and we're proud to partner with Microsoft to help organizations defend with the power of collective defense. Ready to learn how to become AI-enabled with Team Cymru and Microsoft Security Copilot? https://ow.ly/TGNy50Vl8Pj #cybersecurity #SOC #integration #microsoft #partner #teamcymru

We're Hiring: Director of Global Events At Team Cymru, events play a key role in our growth, helping us generate pipeline, boost recognition, and drive community support. We’re looking for a creative and highly organized leader to join our team! As the Director of Global Events, you’ll shape and execute impactful events across North America, Europe, and APJ — from industry tradeshows to corporate gatherings and regional experiences. If you have a passion for delivering exceptional experiences and have proven event & team management expertise, we want to hear from you! Apply now and be part of something exciting. We’re #hiring. Know anyone who might be interested?

Join us April 28 – May 1 at the RSA Conference to explore the power of Pure Signal? threat intelligence and our new Insights Threat Feed at Booth #N-6277 . See how real-time external threat intelligence helps you close detection gaps, accelerate incident response, and defend beyond your network. What We're Bringing to RSA: -Live Demos – See Pure Signal Scout & Insights Threat Feed in action -Giveaways – Enter to win a Lego Death Star…. just for stopping by -Speaking Session – David Monnier breaks down ORB attack trends and strategies to expand visibility beyond the network edge -Happy Hour with Cyware– Unwind at Yerba Buena Bar with cybersecurity leaders over great drinks and even better conversations Don’t miss out—explore all our RSAC activities: https://ow.ly/qRxo50VkPlW #RSAC #RSC25 #ThreatIntelligence #CyberSecurity #PureSignal #TeamCymru

Join Cyware and Team Cymru on March 27th at 11 AM EDT for an insightful workshop on the practical challenges CTI analysts face daily and how to maximize the impact of threat intelligence. Led by Kris Palmer & Will Baxter, this session will help you navigate the complexities of threat data and its role in security operations. You’ll walk away with actionable strategies to: -Integrate threat intelligence into your organization’s security operations -Cut through alert fatigue and focus on critical threats -Prioritize and act on the most relevant threat data -Collaborate effectively with stakeholders to align with business goals -Measure success and demonstrate ROI in threat-hunting initiatives Don’t miss the opportunity to refine your skills and improve decision-making in your security processes. Register now: https://ow.ly/ELbX50V9Hj4? #cybersecurity #threatanalyst #intelanlyst #workshop #CTI #cyware #teamcymru #partners

SOC teams face constant pressure to detect and respond to threats faster. How can network intelligence give them an edge? Join Will Baxter from Team Cymru and James Brodsky from Google tomorrow to explore how integrating network and IP intelligence into Google SecOps enhances threat detection, response speed, and analyst awareness. Discover practical ways to enrich alerts, track threat actor infrastructure, and stop attacks before they escalate. Register now: https://ow.ly/YKXy50Vg4Cx #Cybersecurity #GoogleSecOps #ThreatIntelligence #SOC #SecurityOps #TeamCymru

The limitations of commercial security tools are creating concerning gaps in OT system protection. In this episode of The Future of Threat Intelligence, Jeffrey Caruso, Senior Analyst at Wikistrat & Author of Inside Cyber Warfare, breaks down why current security approaches for critical infrastructure face fundamental challenges. He highlights a sobering reality: adversaries are using trial-and-error methods to understand system behavior, while commercial security solutions struggle to keep pace. The core issue? Commercial security tools must balance profitability with protection, leading to inherent limitations in their design. When defending critical infrastructure, this creates serious implications for utility companies and transportation systems. Jeffrey’s insights challenge conventional thinking about OT system security and suggest we need fundamentally new approaches to critical infrastructure protection. Full episode here: https://lnkd.in/e2kHyvnd #futureofthreatintelligence #cybersecurity #threatintelligence

"Medusa was initially operated as a closed ransomware, and, although it is currently using an affiliate model, ransom negotiations are still conducted by the malware developers, CISA, the FBI, and the Multi-State Information Sharing and Analysis Center (MS-ISAC) note in a joint alert. The group engages in double extortion, encrypting victims’ data but also stealing it and threatening to leak it unless a ransom is paid. Medusa’s operators offer payments ranging between $100 and $1 million to affiliates working exclusively for them, the three agencies say. The group has been observed relying on phishing to steal victims’ credentials, and exploiting unpatched vulnerabilities for initial access, including CVE-2024-1709 (the ’SlashAndGrab’ ScreenConnect flaw) and CVE-2023-48788 (SQL injection bug in Fortinet EMS)." Read the article: https://ow.ly/3Cc450Vi4Ew Read articles like this and more, delivered daily to your inbox. Sign up for DNB: https://ow.ly/jV1E50Txv4t #cybersecurity #dnb #phishing #ransomware #cyberthreat #cybernews

RISE USA returns April 8-9, 2025, in Oyster Bay, San Francisco—co-hosted by Stripe. This exclusive event offers TLP-RED intelligence and expert-led workshops designed to equip cybersecurity professionals with actionable insights. Attendees will gain firsthand knowledge on APT operations, ransomware evolution, AI, OSINT, cyber fraud tactics, and advanced detection techniques. Admittance is restricted, and space is limited. Apply Today: https://lnkd.in/eb38tj7f #cybersecurity #teamcymru #RISEUSA #securityevent #R15E