Your organization’s leadership is 12 times more likely to be the target of a security incident and nine times more likely to be the target of a data breach than they were last year. Find out how they can be protected.
Read the Datasheet
Gift Cardsharks: The Massive Threat Campaigns Circling Beneath the Surface
Learn about the attack group primarily targeting gift card retailers and the monetization techniques they use.
Get the Report
Threat Hunting Workshop Series
Join one of our security threat hunting workshops to get hands-on experience investigating and remediating threats.
Attend an Upcoming Workshop
Inside Magecart: New RiskIQ & Flashpoint Research Report
Learn about the groups and criminal underworld behind the front-page breaches.
Rackspace Accelerates External Digital Threat Investigation with RiskIQ PassiveTotal
Download Case Study
Threat Hunting Guide: 3 Must-Haves for the Effective Modern Threat Hunter
The threat hunting landscape is constantly evolving. Learn the techniques, tactics, and tools needed to become a highly-effective threat hunter.
The RiskIQ PassiveTotal Engineering team has been busy over the past few weeks on the tool that concerns external threats, attackers, and their related infrastructure, and we are excited to announce some product enhancements that should improve the overall user experience and make conducting investigations and accessing RiskIQ intelligence even easier.
Fig-1 Performance loading data
You have hundreds of alerts to get through, and we know every second counts. That’s why we’ve focused on performance loading data as it streams into the platform for faster assessments of actor infrastructure and a more consistent experience every time.
Fig-2 New-look project
Projects have gotten a new look and feel that enables you to search across public research and your own private investigations quickly, featuring dedicated tabs to organize your investigations more efficiently.
Public Projects: Projects shared with and available to the entire community
My Projects: An analyst’s investigations
Team Projects: (Enterprise Only) – All enterprise organization projects
Shared Projects: Projects where you are listed as a collaborator
RiskIQ is also excited to announce the expansion of our Public Projects to allow non-registered users the ability to view a project and share public projects with the wider security community via our newly added social media and email sharing controls. Currently, this functionality is only available on RiskIQ featured projects and will look to grow this capability with our community and research partners.
Fig-3 Public Project inside RiskIQ Community Edition
Easily access Open Source and RiskIQ intelligence using our Global Tags. These tags are pushed to PassiveTotal in coordination with a featured project to provide the community with easy access to intelligence and context.
Fig-4 Global tags
Analysts can also search PassiveTotal using global tags, easily surfacing unknown intelligence or kicking off an investigation based on actor group, campaign, or malware.
Fig-5 Global tags inside a Public Project
All of these enhancements are designed to improve the analyst experience, reduce friction in accessing data, and speed analysis for our community. We hope you enjoy these changes and as always, we love to hear from our analyst community, if you have feedback about any of these new features, please let us know.
Another Magecart group has started to compromise misconfigured S3 buckets! Please secure your buckets.
We detailed how to secure your S3 Buckets in our original reporting: https://t.co/QKrZqWV506
The Columbus, OH #ThreatHunting community is out in full force for today's workshop! Together, we're powering better investigations through data.
Some insights based on reporting by @RiskIQ: Beyond Wipro: Meet the ‘Gift Cardsharks’ Behind the Massive Campaign Targeting Victims with Commercially Available Tools https://t.co/6Vxsnygp1z via @ooda
For today's executives, protecting your organization means protecting yourself—and knowing that personal security sits at the confluence of the physical and digital worlds. https://t.co/HShORi3X6j #ExecutiveProtection #ExecutiveSecurity
Overlap in RiskIQ's unique data sets uncovered a massive threat campaign using popular marketing and analytics tools to target gift card retailers, distributors, and processors. Here's what you need to know https://t.co/GkHsPFwkkd #ThreatIntelligence