Welcome to the Red Canary Threat Detection Report
Our Threat Detection Report takes a close look at the top techniques, threats, and trends to help security teams focus on what matters most.
Red Canary's 2025 Threat Detection Report is live! A ton of work went into this report and it's awesome to be able to share it with y'all. If you're curious about our top 10 threats for the year, trends we've seen, or what our color + bird threats are, answers are here!
redcanary.com/threat-detec...
18.03.2025 15:49 โ ๐ 6 ๐ 0 ๐ฌ 0 ๐ 0
Sorry for the delay in responding to your question! We do not, to my knowledge.
18.03.2025 15:47 โ ๐ 1 ๐ 0 ๐ฌ 0 ๐ 0
Intelligence Insights: February 2025
Infrared Ibis infiltrates Chrome extensions and Saffron Starling surprises in this month's edition of Intelligence Insights
Hey y'all, this month's Intelligence Insights is out! We had two new birds make the list:
- Infrared Ibis == how we track behavior related to malicious chrome extensions
- Saffron Starling == our name for a loader that delivers Danabot/DarkGate/Matanbuchus
redcanary.com/blog/threat-...
20.02.2025 21:37 โ ๐ 2 ๐ 0 ๐ฌ 1 ๐ 0
Tangerine Turkey mines cryptocurrency in global campaign | Red Canary
Named by Red Canary, Tangerine Turkey is a VBS worm delivered via USB that ultimately drops a cryptomining payload
Exciting update to our blog! As part of our ongoing research we identified some public Github repos being leveraged that, I'm happy to say, are no longer active! More details--plus some IOCs for still-active sites--in the update.
redcanary.com/blog/threat-...
30.01.2025 21:12 โ ๐ 3 ๐ 2 ๐ฌ 0 ๐ 0
Tangerine Turkey mines cryptocurrency in global campaign | Red Canary
Named by Red Canary, Tangerine Turkey is a VBS worm delivered via USB that ultimately drops a cryptomining payload
Hey folks! Kicking off my Bluesky debut with a new Red Canary bird debut. This month we introduced Tangerine Turkey, Red Canary's name for a VBS worm that is delivered via an infected USB and uses a printui DLL hijack to deliver a cryptomining payload. Here's our blog!
redcanary.com/blog/threat-...
24.01.2025 16:29 โ ๐ 10 ๐ 1 ๐ฌ 0 ๐ 0
24/7/365 threat detection and response across your cloud, identity, endpoints and everything in-between. We got you!
For more information visit: https://redcanary.com/
Slowly trying to get back into post-Twitter social media. Likely: Posts about baking, beer, books, movies, etc. Previously: Writing about data protection at Fortra. Now: Writing, content and other stuff at Red Canary.
Detection Engineer @ Red Canary
https://github.com/killamjr
Intel @ Crowdstrike. Former stints @ Red Canary and Unit 42. Tweet and opinions are my own.
Lead cybercrime analyst, tracking adversaries activities & infrastructure, at @sekoia.io
CTO @TrustedSec.com | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Distinguished Strategist @Splunk. Leader of #SURGe. Enjoys clicking too fast, long walks in the woods, & advocating. Hates printers. Co-Creator of the BOTS CTF
Sr. Manager, Threat Operations @kroger ๐ CTI, Hunting, Detection Engineering, Insider Risk, Fraud & Forensics ๐ป Fmr LE & DFIR for OH & Secret Service TF. #FSD #w00w00 #CFC
DFIR by day, DFIR by night.
Former vet tech.
Violinist, Salty, Tired, Meme Enthusiast.
Birb stalker. Cat tree. Cyber Threat Researcher. Recovering cyber and natsec journalist. Navy vet. Meme war survivor. Creator of CyberThreaterator and Sean's Vuln Emotes (SVE) #Baltimore
@thepacketrat everywhere since 1994. https://falling-anvil.com
#Librarian turned #InfoSec & #DataPrivacy practitioner. #Philly area hoagie mouth. InfoSecSherpa and Sherpa Intelligence: Your Guide Up a Mountain of Information! Portfolio: https://linktr.ee/infosecsherpa
Offensive Security Professional | Phillip Wylie Show Podcast Host | The Pentester Blueprint coauthor | TribeOfHackers Red Team | https://linktr.ee/phillipwylie
I help businesses and experts clarify and implement a compelling brand message and marketing system that works | StoryBrand Marketing Coach | Host, I Am Black Successยฎ podcast | #BestDadEver ๐ฏ๐ฒ๐บ๐ธ
Frontline Intelligence with #AdvancedPractices ๐ฆ
@Google Threat Intel | views are my own
Past: Host of "Tribe of Hackers"; Assoc. Producer "Darknet Diaries."
Current: Cybersecurity researcher and executive. Also, father of the fastest climber who has ever lived. Seriously.
Warning: I talk about my son ALOT
โUt scandis, alios subleva.โ
The official "Resistance" team of U.S. National Park Service. Our website: www.ourparks.org
Fighting malware and botnets
SpyCloud - Director of Security Research, Cryptolaemus Coordinator, Emotet(Ivan)/QBot(Boris) Destroyer, gold prospector & former sysadmin.
![Ray [REDACTED]](https://cdn.bsky.app/img/avatar/plain/did:plc:657oa6ldqrsjo5roln7ckm36/bafkreihxcz5jz6mhiqernmmppio2lw7uvm7zfem4qrmlfqbpdcllvuxx54@jpeg)
