Curated Intelligence

Curated Intelligence Community Highlights Bytes and Borscht Cyber Threat Intelligence - Art, Science, something else entirely? https://lnkd.in/erpbN2H8 Will Thomas, Eli W., Will Baxter - The Dragon Bytes News Podcast - The AI Zero-Day Engine, China’s Cyber Rise, and CI/CD Poisoning - https://lnkd.in/eC6q7VNx - AI Supply Chain Exploits, Cyber-Kinetic Threats, and the FUD-X - https://lnkd.in/eDWwiGWu Thomas Roccia - Trip Dump in Singapore at BlackHat ASIA - https://lnkd.in/e98DzbpA Aaron Roberts - Weekly OSINT Tools List - https://lnkd.in/eTXzgPtW Ollie Whitehouse - Preparing for a ‘vulnerability patch wave’ - https://lnkd.in/eE7SRJHe - CTO at NCSC Summary - https://lnkd.in/esB4xK2Y - CTO at NCSC Summary - https://lnkd.in/emjkRTJD Dan Lisichkin - My Agentic Trust Issues: From Prompt Injection to Supply-Chain Compromise on gemini-cli - https://lnkd.in/dWbi-TiN Alexander S. - Advancing Response to Sadistic Online Exploitation in Networked Youth Environments- https://lnkd.in/eFG8bP26 Daniel López - Tycoon 2FA phishing actors scatter, branch into new attacks - https://lnkd.in/eedF5Kv3 Mei Danowski - Chasing Palantir: Inside China’s Obsession and the Rise of Its Next-Generation AI-enabled Defense Firms - https://lnkd.in/dvkeDsCy Will Thomas - Awesome-Ransomware: https://lnkd.in/ekUdYaCf - Warlock's Tools: https://lnkd.in/e6YggPD2 - WarLock's Exploited Vulnerabilities: https://lnkd.in/e9wUt_fp

Curated Intelligence Community Highlights Will Baxter, Eli W., and Ben Archie - The Dragon News Bytes Podcast - APJ Ransomware, Axios NPM Hijack, and AI Privacy Nightmares: https://lnkd.in/eMEa7mpm - AI Supply Chain Attacks, Iranian PLC Exploits, and DPRK IT Workers - https://lnkd.in/eVNTPN7D Mei Danowski - Cybersecurity Strategy in China’s 15th Five-Year Plan - https://lnkd.in/g55fhB-8 - Chinese Firm Claims AI-Driven Bug Discovery Near Claude Mythos Scale - https://lnkd.in/e6QuNRr6 Freddy M. - The Intelligence Tradecraft Podcast: - From UK Defense intelligence to Private Sector Intelligence - Interview with Will Woodall (S2E4) - https://lnkd.in/e-QkR8SY - From US Army Intelligence to Private Sector Intelligence Advisor - Interview with Jeremy Levin (S2E5) - https://lnkd.in/ednEHG4w Thomas Roccia - Threat Actor Profiling Agent Skill - https://lnkd.in/eMc2Zei3 - Axios supply chain attack - https://lnkd.in/esRMMCFt Ollie Whitehouse - CTO at NCSC Summaries - https://lnkd.in/e3BPm9tf - https://lnkd.in/eZBcf8Yi - https://lnkd.in/eSXXmVck Yoan Schinck - KPMG Canada Cyber Incidents & Intelligence 2025: https://lnkd.in/e35kGW_6 Aaron Roberts - This Week's OSINT Tools Series: - https://lnkd.in/eksBrcmT - https://lnkd.in/ebhw7Z4V Will Thomas - Reflecting on Team Cymru's RISE Ireland 2026 - https://lnkd.in/e4EXq7N2 Ray Confer - Intel Bytez - Apex Discovery - https://lnkd.in/eaBR2y96 - Build Your Own EASM - https://lnkd.in/exwiH2my Saksham Anand - One Click(Fix) To Rule Them All, One Click(Fix) To Find Them - https://lnkd.in/e8prRbgv Dan Lisichkin - Prompt Injection leads to RCE and Sandbox Escape in Antigravity - https://lnkd.in/dapxkxpV Lloyd D. - SIM Farms as a Service - https://lnkd.in/evBz3kqC

Thanks for the shoutout and glad to see more community resources being shared by experts willing to lend their time to help others 🙌

This Week in Curated Intelligence Yoan Schinck - New batch of 5x Ransomware Tool Matrix Community Reports - https://lnkd.in/eB2Mbc9c Tammy Harper - Emerging Threat: HYFLOCK Ransomware-as-a-Service - https://lnkd.in/et4iWn3P Eli W. - Vibe Coding The Holidays Away - https://lnkd.in/e_Jy8_6z - Cyber Security Intelligence: Analysis of Edge Devices Amid Growing Vulnerabilities - https://lnkd.in/ehHGcEBP Will Thomas - Stranger Strings: Yurei Ransomware Operator Toolkit Exposed - https://lnkd.in/e8Y-QTcj - Inside cybercrime investigations: Validating claims, tracing crypto, and rookie mistakes - https://lnkd.in/eFg26xH2 Ray Confer - Telegram RSS Feed Bot Instructions - https://lnkd.in/e5aMZdMq Alexander S. - Where The Com Talks: Cross-Platform Presence Across 2 Million COM Telegram Messages - https://lnkd.in/eUQip7pi Aaron Roberts - Weekly OSINT Tools - https://lnkd.in/e4QD3vDX John Doyle - Announcement of FOR478: Cyber Threat Intelligence Foundations - https://lnkd.in/exFHm4ys Parthiban R - Webapp (using LLM) to perform the CTI maturity assessment using CTI-CMM - https://lnkd.in/edzZ2yDb Will Baxter - Pipeline Peril, Citrix Bleed 3.0, and the Hacktivist Playbook - https://lnkd.in/eSSEz4_9 Andy Gill - Bullying LLMs into submission to find 0days at scale - https://lnkd.in/gHk_XixC Ollie Whitehouse - CTO at NCSC Summary - https://lnkd.in/eVMwFBSc

This Week in Curated Intelligence Will Thomas, Eli W. - Operation Ghost Mail, Starlink Evasion, and the Stoat Waffle Threat - https://lnkd.in/eWKZvRhT Ray Confer - Attack Simulation - Solana as a C2 - https://lnkd.in/eTtJy8DU - Voidstealer ABE Bypass - https://lnkd.in/eWTB7u82 Robin Dimyanoglu, Mei Danowski Wargaming a China-Taiwan Conflict and Its Cyber Scenarios - https://lnkd.in/eiARQhsW - https://lnkd.in/euK6t-ra Will Thomas - Industrial Cybersecurity Risks from Internet-Exposed ICS Devices - https://lnkd.in/gq7ByxjE Tammy Harper - Leak Bazaar - https://lnkd.in/emPkpV3t Kevin Holvoet - More attacks, more reporting: Belgium’s cyber reality in 2025 - https://lnkd.in/eGPsqAK2 Freddy M., Aaron Roberts - Intelligence Tradecraft Podcast SE2:EP3 - https://lnkd.in/e4gzPBKa Ollie Whitehouse - CTO at NCSC Summary - https://lnkd.in/eDmEnMqu

This Week in Curated Intelligence Andy G. - Roll Your Own... LMS - https://lnkd.in/eJHwrq-6 Eli W. - Unicode Hider - https://lnkd.in/e92BruUQ Will Thomas - Grab Bulk CVE Details - https://lnkd.in/eSb66-Vj - The Beast Returns: Analysis of a Beast Ransomware Server - https://lnkd.in/gYuP_EHH Eli W., Will Thomas - Dragon News Bytes Podcast - https://lnkd.in/eu2DzkuW Ray Confer - Solana Blockchain C2 - https://lnkd.in/etyKqsCq Aaron Roberts - Weekly OSINT Tools - https://lnkd.in/ebCJrWbY Dr Aleksandar Milenkoski - Building an Adversarial Consensus Engine | Multi-Agent LLMs for Automated Malware Analysis - https://lnkd.in/eCvbjnwc Ollie Whitehouse - CTO at NCSC Summary - https://lnkd.in/eT6hwues

This Week in Curated Intelligence Will Thomas - Podcast with Mnemonic - https://lnkd.in/e3XBakj4 - Interview with DarkReading - https://lnkd.in/eavWKNhj Will Thomas, Eli W., Will Baxter - Dragon News Bytes Podcast - https://lnkd.in/eRFs3Gfn Dr Aleksandar Milenkoski - From Narrative to Knowledge Graph - https://lnkd.in/egVURaes Tammy Harper - Emerging Threat: SnowTeam - https://lnkd.in/e4XVtJM8 - Emerging Threat: Tengu - https://lnkd.in/exCEUTVN Massimo Giaimo - Handala and the release of strategic information regarding Israeli organizations - https://lnkd.in/e2GbKUQ3 Freddy M. - From UK Police Intelligence to academia: Support versus specialist - Nadia Tuominen - https://lnkd.in/eedHScuE Mei Danowski - Faux Amis: How France Stands Apart in Europe’s High-Risk University Cyber Partnerships with China - https://lnkd.in/ei3wDCu4 Aaron Roberts - Weekly OSINT Tools - https://lnkd.in/eMRG5e7B Ollie Whitehouse - CTO at NCSC Summary - https://lnkd.in/eDdHD3xp

This Week in Curated Intelligence Aaron Roberts - What is ThreatLens - https://lnkd.in/ekx_Qfd5 Thomas Roccia - Malware Reverse Engineering is no longer a human problem! - https://lnkd.in/eneaV52r Will Thomas - Tracking CyberStrikeAI Usage - https://lnkd.in/eaukM3q2 - Tracking North Korean Threat Actor Infrastructure - https://lnkd.in/eu3njdCW - Cybercrime trends and tradecraft - https://lnkd.in/exhWbet9 - GRIMBOLT C2 Infrastructure Recon - https://lnkd.in/egkQtze6 TELEMETRY - SATIP — Strategic Adversaries Threat Intelligence Platform - https://lnkd.in/epcs5C_a Freddy M. - Nordic Financial CERT (NFCERT) 2026 Cyber Threat Landscape (CTL) report - https://lnkd.in/eycFXvdt Simon Kenin - Tracking malicious PDF files linked to Handala/UNC5203 - https://lnkd.in/eKn5Jp8k Robert Giczewski - Mass exploitation of CVE-2026-1281 and CVE-2026-1340 in Ivanti EPMM - https://lnkd.in/eHUHitwj Tammy Harper - Tsundere Botnet Analysis - https://lnkd.in/eepnfRw9 Ollie Whitehouse - CTO at NCSC Summary - https://lnkd.in/egNWRgZP Chris Kirby - Tracking a crypto-phishing operation - https://lnkd.in/ecwyUkwD

This Week in Curated Intel Ollie Whitehouse - CTO at NCSC Summaries: - https://lnkd.in/eijsrSTh - https://lnkd.in/eiYk3S2i - https://lnkd.in/erQ_QVC7 Andy G. - Malwareless Adversary Emulation - https://lnkd.in/eFSYcZD2 Will Baxter, Eli W., Will Thomas - Edge Warfare, MDM Hijacks, and the Warlock Blitz - https://lnkd.in/eSTmhyKf Will Thomas - Protecting Critical National Infrastructure (CNI) through extended global visibility - https://lnkd.in/eBhe8jva - Quick Pivot on UNC6201 infrastructure - https://lnkd.in/e5ePUs4Z John Jarocki - Decoding Interactsh OAST domain metadata - https://lnkd.in/e2Y4GGxs Aaron Roberts - OSINT Tool Thursday - https://lnkd.in/e-Pi8wYq Thomas Roccia - From GenAI to GenUI - https://lnkd.in/en7ZsrmC Bytes and Borscht - Discovery is Not The Bottleneck - https://lnkd.in/e9zEaNZW John Doyle - Promotions and pivots: Practical advice on CTI career strategy - https://lnkd.in/eMNKU_ik Freddy M. - First episode of Season 2 of the Intelligence Tradecraft Podcast - https://lnkd.in/eaqJgwQp Mei Danowski - China’s National Research Center for Information Technology Security: Is It Part of the PLA Cyberspace Force? - https://lnkd.in/eB7syFh2

This Week in Curated Intelligence Ollie Whitehouse – CTO at NCSC Summary – https://lnkd.in/eHcgimdC Thomas Roccia – An update to MoltThreats: The first AI Threat Intel Feed for AI Agents – https://lnkd.in/eqrbWV9k Will Baxter, Will Thomas – Agentic Overload: The Rise of AI Exploits and the "Wet Bandit" APT – https://lnkd.in/e8_BzWKb Bytes and Borscht – Russian Reading – https://lnkd.in/eAhq-zAT Mei Danowski – The Tianfu Cup Returns Under MPS Leadership as AI Takes Center Stage – https://lnkd.in/gqPQFpgg Will Thomas – Tracking ORBs on Singapore's Telecommunications Networks – https://lnkd.in/e97c8EM7 Will Baxter – Stripe's Vincent Passaro on Fraud Taxonomies & Generating Red Team Testing Roadmaps – https://lnkd.in/e6PMuVH4