Reimagine CTI reporting with EclecticIQ’s unified platform - build branded, audience-tailored intelligence reports in a fast, intuitive, “what‑you‑see‑is‑what‑you‑get” interface| blog.eclecticiq.com
Cybersecurity has been stuck in reaction mode for too long. Detect, respond, patch, repeat. That cycle isn’t working anymore especially not when threat actors are moving faster, scaling wider, and using AI to outpace defenders.| blog.eclecticiq.com
Fighting ransomware isn’t about more data — it’s about smarter context. Veteran Jeremy Nichols reveals how to outpace threats with automation.| blog.eclecticiq.com
Executive Summary EclecticIQ analysts assess with high confidence that ShinyHunters is expanding its operations by combining AI-enabled voice phishing, supply chain compromises, and leveraging malicious insiders, such as employees or contractors, who can provide direct access to enterprise networks.| EclecticIQ Blog
I'm incredibly proud to share that EclecticIQ has been officially certified as a Leading Employer Netherlands 2025, placing us among the top 1% of employers in the Netherlands. Having joined the company about a year ago, this recognition validates what drew me here in the first place and what I've experienced firsthand: our people truly are our greatest asset.| EclecticIQ Blog
Executive summary On June 2, 2025, EclecticIQ analysts observed the emergence of GLOBAL GROUP, a new Ransomware-as-a-Service (RaaS) brand promoted on the Ramp4u forum by the threat actor known as “$$$”. The same actor controls the Black Lock RaaS [1] and previously managed Mamona [2] ransomware operations. GLOBAL GROUP targets a wide range of sectors across the United States and Europe. EclecticIQ assesses with medium confidence that GLOBAL GROUP was likely established as a rebranding...| EclecticIQ Blog
Executive Summary On May 7, 2025, during the active military escalation between Pakistan and India—specifically in the context of India's military campaign 'Operation Sindoor'—, EclecticIQ analysts observed that Bitter APT (also known as TA397)[1] very likely targeted the Pakistan Telecommunication Company Limited (PTCL) workers[2] in a spear phishing campaign very likely to deliver malware. Analysts assess that, Bitter APT is very likely a South Asian state-sponsored actor, conducting cy...| EclecticIQ Blog
Executive Summary On Thursday, May 15, 2025, Ivanti disclosed two critical vulnerabilities - CVE-2025-4427 and CVE-2025-4428 - affecting Ivanti Endpoint Manager Mobile (EPMM) version 12.5.0.0 and earlier. [1] These vulnerabilities can be chained to achieve unauthenticated remote code execution (RCE) on exposed systems.| EclecticIQ Blog
Executive Summary EclecticIQ analysts assess with high confidence that on May 11, 2025, pro-Kremlin disinformation group Storm-1516 [1] amplified a fabricated story on X, falsely claiming European leaders used drugs while traveling by train to Kyiv for peace talks, aiming to undermine the European support for Ukraine [2]. Independent fact-checkers quickly debunked the false rumour, which was based on a photo of a paper napkin likely deliberately misidentified as a “bag of cocaine.”[3]| EclecticIQ Blog
Executive Summary EclecticIQ analysts assess with high confidence that, in April 2025, China-nexus nation-state APTs (advanced persistent threat) launched high-temp exploitation campaigns against critical infrastructure networks by targeting SAP NetWeaver Visual Composer. Actors leveraged CVE-2025-31324 [1], an unauthenticated file upload vulnerability that enables remote code execution (RCE). This assessment is based on a publicly exposed directory (opendir) found on attacker-controlled i...| EclecticIQ Blog
EclecticIQ "Getting Started" module is an intuitive guide designed to walk users through each step, ensuring that both newcomers and experienced professionals can maximize the platform's capabilities with ease and efficiency.| blog.eclecticiq.com
Latest on Vulnerability Trends, STIX / TAXII, Beyond the IOC, Ransomware Snapshots, and Threat Analyst enablement| blog.eclecticiq.com
Sandworm APT targets Ukrainian users with Trojanized Microsoft KMS tools for cyber espionage, leveraging pirated software to exfiltrate sensitive data and compromise critical infrastructure.| blog.eclecticiq.com
EclecticIQ analysts discovered ransomware operations by SCATTERED SPIDER targeting cloud infrastructures within the insurance and financial sectors.| blog.eclecticiq.com
Powerful AI features, new tools for MITRE ATT&CK analysis, and a host of exciting new developments designed to elevate your threat intelligence operations.| blog.eclecticiq.com
Protect your organization more effectively with EclecticIQ's keyword-based watchlists, automating the monitoring process and delivering precise alerts.| blog.eclecticiq.com
Elevate your team's collaboration by seamlessly sharing notes both internally and externally for improved collective intelligence.| blog.eclecticiq.com
Discover how EclecticIQ's Natural Language Processing Search can improve your search process, boost team efficiency, and enhance skill development, empowering analysts to better defend against cyber threats.| blog.eclecticiq.com
Explore EclecticIQ's interactive ATT&CK matrix navigation with heatmaps that visualize TTP trends and instantly identify potential threat hotspots.| blog.eclecticiq.com
Improve your cybersecurity reports with EclecticIQ's AI Writing Assistant. Refine style and tone, and receive text suggestions for clear, professional reports.| blog.eclecticiq.com
EclecticIQ analysts discovered phishing campaigns targeting financial institutions driven by a Phishing-as-a-Service (PhaaS) platform called ONNX Store.| blog.eclecticiq.com
Discover why, how, and what we are doing to help organizations convert online cyber threat information into structured threat data.| blog.eclecticiq.com
More refined intelligence management capabilities, an enhanced analyst experience and a first Generative AI-powered feature.| blog.eclecticiq.com
EclecticIQ analysts identified a threat actor that utilized information stealer HackBrowserData to target Indian government entities and energy sector.| blog.eclecticiq.com