Threat Intelligence Reports
Last updated: May 2026
Original threat intelligence from NOVE's research team. Published quarterly with interim advisories on active campaigns.
2026 DFIR Threat Landscape Report
Covers ransomware-as-a-service evolution, LockBit infrastructure takedown aftermath, and rising BEC sophistication across financial and healthcare sectors.
Request Report →APT29 Campaign Analysis: Operation Midnight Sun
Technical analysis of the SVR-linked group's new Cobalt Strike profile patterns and WMI persistence mechanisms observed in diplomatic targeting.
Request Report →LockBit 3.0 Variant Technical Indicators
YARA rules, C2 infrastructure IOCs, and Sigma detection rules for the latest LockBit variant observed in European financial sector attacks.
Request Report →Insider Threat Patterns in Financial Services 2025–2026
Analysis of 47 investigated cases, with UEBA behavioural signatures, risk indicators, and detection logic for privilege abuse and data exfiltration.
Request Report →Cloud Credential Abuse: AWS/Azure Attack Patterns
How threat actors abuse valid credentials in cloud environments, with detection logic, MITRE ATT&CK mapping, and recommended IAM hardening controls.
Request Report →Subscribe to receive new reports as they are published:
[email protected]