Prevent. Detect. Mitigate.

Ahead of the Threat Curve

Blog

Doppelgänger NG | Russian Cyberwarfare campaign
February 22, 2024

ClearSky Cyber Security and SentinelLabs have discovered a new wave of Russian information warfare campaign named Doppelgänger NG. “Doppelgänger” (meaning spirit double, an exact but usually invisible replica) is a global information warfare campaign publishing false information on hundreds of fake websites and social media channels.Our research revealed that “Doppelgänger NG” is again fully operational […]

Read more
“Homeland Justice” targets Albanian organizations with “No-justice” wiper
January 4, 2024

This blog post will elaborate on “Homeland justice” group’s background and provide an in-depth analysis of the tools used in the current attack, including reverse engineering of the NACL executable – dubbed “No-Justice Wiper” Read the Full report: No-Justice Wiper

Read more
Fata Morgana: Watering hole attack on shipping and logistics websites
May 23, 2023

ClearSky Cyber Security has detected a watering hole attack on at least eight Israeli websites. The attack is highly likely to be orchestrated by a nation-state actor from Iran, with a low confidence specific attribution to Tortoiseshell (also called TA456 or Imperial Kitten). The Infected sites collect preliminary user information through a script. We have […]

Read more
Lyceum suicide drone
June 23, 2022

ClearSky discovered a new malware associated with the Iranian SiameseKitten (Lyceum) group withmedium-high confidence.The file is downloaded from a domain registered on June 6th, and it communicates with a previously unknown command and control server whose IP address is adjacent to that of the domain. This indicates an attacker-controlled at least two IP’s on the […]

Read more
EvilNominatus Ransomware
April 7, 2022

As part of our monitoring of malicious files in current use, we detected a malicious BAT file that was uploaded to VirusTotal from Iran. This file executes a ransomware that we associated with the EvilNominatus ransomware, initially exposed at the end of 2021. It seems that the ransomware’s developer is a young Iranian, who bragged […]

Read more
New Iranian Espionage Campaign By “Siamesekitten” – Lyceum
August 17, 2021

At the beginning of May 2021, we detected the first attack by Siamesekitten on an IT company in Israel. Siamesekitten (also named Lyceum/Hexane) is an Iranian APT group active in the Middle east and in Africa that is active in launching supply chain attacks. To this end Siamesekitten established a large infrastructure that enabled them […]

Read more

Clients say about us

The First International Bank of Israel has many cyber security challenges as one of the leading banks in Israel. ClearSky has provided us with extended vision of cyberattacks and extra prevention layer against focused cyberattacks, which are important for our finance institute. They are an excellent group of cyber experts, a trusted cyber advisor for the past couple of years, that provides us with top quality preventive cyber-intelligence and mitigation solution.

Shuky Peleg
Head of Cyber Defense and Information Security
MATAF, First International Bank of Israel Group

ClearSky’s team constantly proves their remarkable, deep understanding of evolving cyber threats, threat actors’ scenery, forthcoming campaigns, attack tools and techniques. Together with ClearSky, as a trusted advisor, we were able to empower the company’s Cyber Defense capabilities. Throughout the years, they have been tremendously accessible, operational and adaptive to our every need, communicated clearly and straight to the point and became an inseparable part of our Cyber Defense Center team.

Noam Ravid
Director IT Security Cyber Defense Center
Teva Pharmaceuticals Ltd

Clearsky enables us to see beyond our network, firewalls or email traffic, and gives us clear sight of threats targeting our company and methods to prevent cyberattacks. They help us to focus our efforts to mitigate risks in real time and prepare our teams for the next round in the never-ending cyber battle. We found their solutions and methods to be unique and extremely professional and their team highly trained. Clearsky has always an updated, clean and authentic view of current threats and can advise and point you in the right direction.

Ronen Ahuvia
OCIO
Ayalon Insurance Company

Sitemap xml | Copyright 2024 © ClearSky Cyber Security