Resources | Threat Hunting and Intelligence (4)

RADICL recently observed a sophisticated phishing campaign designed to steal O365 login credentials.

Threat Hunting and Intelligence

Sharing is Caring – Novel SharePoint Phishing Campaign

Jul 17, 2024 3 min read

The Pyramid of Pain is a conceptual model created by David Bianco in 2013 that helps detection engineers and analysts understand how to best use threat intelligence to halt threat actors.

Threat Hunting and Intelligence

Pyramid of Pain: You Can't Tie Your Shoes That Way

Jul 02, 2024 3 min read

We identify ways hackers leverage everyday websites and tools to build a picture of a target organization they can use to gain initial access.

Threat Hunting and Intelligence

Big Brother Hacker - Attack Reconnaissance

Jun 05, 2024 5 min read

MITRE ATLAS is a globally accessible, living knowledge base of adversary tactics and techniques against Al-enabled systems based on real-world attack observations and realistic demonstrations from Al-red teams and security groups.

Threat Hunting and Intelligence

Navigating Skynet with MITRE ATLAS

May 20, 2024 2 min read

RADICL has observed an ongoing phishing campaign with the intent to steal a victim’s credit card information and other personal data such as email and physical address.

Threat Hunting and Intelligence

Cloudy With a Chance of Credit Card Theft

Mar 07, 2024 3 min read

Narrowing focus is the concept of drilling down from wide datasets to key reference points used to pivot the direction of a forensic investigation.

Threat Hunting and Intelligence

Narrowing Focus in Forensic Investigation

Feb 12, 2024 4 min read

Load More Stories

Beyond contracting officers and primes, your SPRS score is on file with the federal government. If a cyber incident occurs and DoD investigators are examining your compliance history, your SPRS submission is part of the record.

Regulatory Compliance

What is SPRS? How Defense Contractors Are Scored on Cybersecurity

May 26, 2026 8 min read

Regulatory Compliance

What is DFARS 252.204-7012? A Guide for Defense Contractors

May 14, 2026 8 min read

Regulatory Compliance

CMMC Compliance Deadline 2026: Key Dates That Affect Your DoD Contract

Apr 13, 2026 6 min read

PowerShell script used deliberate attempts to bypass CrowdStrike EDR using native BitLocker encryption and vssadmin shadow copy deletion.

Threat Hunting and Intelligence

Ransomware Gang or IT Admin?

Jun 24, 2026 3 min read

On May 18, 2026, RADICL observed an intrusion on a Windows endpoint originating from a trojanized ArcGIS Pro installer downloaded from a typosquatted domain.

Threat Hunting and Intelligence

Trojanized ArcGIS Installer Drops Dual-Channel RAT

May 28, 2026 8 min read

This is a detailed breakdown of a malicious VBS script discovered on an endpoint within RADICL’s customer base as a result of RADICL’s custom EDR detection logic. The script executes a multi-stage attack designed to achieve persistence, evade detection, and deploy a secondary payload.

Threat Hunting and Intelligence

Multi‑Stage VBScript Malware Analysis

Jul 23, 2025 7 min read

Joe Roque sleeps better at night now that RADICL is helping DEWM prepare for their CMMC Level 2 assessment.

Industry Analysis

I Was Stressed, Now I Sleep at Night: DEWM's CMMC Journey with RADICL

Jun 15, 2026 5 min read

DVI Training Systems found a reliable cybersecurity and compliance partner in RADICL.

Industry Analysis

Inside DVI Training Systems' Cybersecurity Transformation with RADICL

Jun 12, 2026 5 min read

Amber Provaznik, CEO of Custom Case Pros, shares why RADICL is the ideal compliance partner.

Industry Analysis

Custom Case Pros: How a 2-Person Defense Company Is Getting CMMC Certified

Jun 10, 2026 6 min read

Incident Response

What Are Incident Response Solutions?

Apr 13, 2026 7 min read

On the evening of 7/25/24, CrowdStrike pushed a content update which caused Windows systems to crash and/or enter a reboot loop, rendering the systems unusable.

Incident Response

A Day in the Life: Our vSOC Responds to the CrowdStrike Incident

Jul 24, 2024 2 min read

Ransoming an espionage victim carries several advantages that can make it an ideal move for nation-state threat actors.

Incident Response

I Spy a Ransomware Attack

Jul 16, 2024 2 min read

There was a joint advisory this week (AA26-097A) warning of active exploitation of internet-facing Programmable Logic Controllers (PLCs).

Attack Surface and Vulnerability Management

Iranian APT Actors Are Targeting Your PLCs — Here's What to Do

Apr 09, 2026 2 min read

Attack Surface and Vulnerability Management

CMMC Enclave: What It Is, When It Works, and How to Build the Right Compliance Boundary

Mar 26, 2026 11 min read

Attack Surface and Vulnerability Management

EP 9 - Palo Alto Networks' Daryan Dehghanpisheh on Vulnerability Management

Jan 23, 2026 1 min read

Security Operations & vSOC

Top SOC Service Providers (SOCaaS) for 2026

Mar 26, 2026 11 min read

Security Operations & vSOC

Best MDR Providers for Regulated Industry & DIB Contractors (2026)

Mar 12, 2026 16 min read

DIB Innovators

EP 57 - Cyber Resilience at the Crossroads

Apr 10, 2025 2 min read

DIB Innovators

EP 1 - Micro-Ant's Charles McCarrick on Innovation and Opportunity in the DIB

Dec 08, 2023 2 min read

DIB Innovators

EP 105 — Delta.g's Tony Lowe on Taking Quantum Gravity Sensing From Lab to Field

Jun 25, 2026 1 min read

DIB Innovators

EP 104 — Impac Systems Engineering's Justin Smart On Cutting The Weight From An Aerospace Part Without Losing Structural Performance

Jun 23, 2026 1 min read

DIB Innovators

EP 103 — OpenC3's Greg Bonn On How A 20-Year-Old Defense Prime Spin-Out Turned Profitable In Year One

Jun 18, 2026 1 min read

Sharing is Caring – Novel SharePoint Phishing Campaign

Pyramid of Pain: You Can't Tie Your Shoes That Way

Big Brother Hacker - Attack Reconnaissance

Navigating Skynet with MITRE ATLAS

Cloudy With a Chance of Credit Card Theft

Narrowing Focus in Forensic Investigation

THE DIB CYBERSECURITY MATURITY REPORT 2025 EDITION

Regulatory Compliance

What is SPRS? How Defense Contractors Are Scored on Cybersecurity

What is DFARS 252.204-7012? A Guide for Defense Contractors

CMMC Compliance Deadline 2026: Key Dates That Affect Your DoD Contract

Threat Hunting & Intelligence

Ransomware Gang or IT Admin?

Trojanized ArcGIS Installer Drops Dual-Channel RAT

Multi‑Stage VBScript Malware Analysis

Industry Analysis

I Was Stressed, Now I Sleep at Night: DEWM's CMMC Journey with RADICL

Inside DVI Training Systems' Cybersecurity Transformation with RADICL

Custom Case Pros: How a 2-Person Defense Company Is Getting CMMC Certified

Incident Response

What Are Incident Response Solutions?

A Day in the Life: Our vSOC Responds to the CrowdStrike Incident

I Spy a Ransomware Attack

Attack Surface & Vulnerability Management

Iranian APT Actors Are Targeting Your PLCs — Here's What to Do

CMMC Enclave: What It Is, When It Works, and How to Build the Right Compliance Boundary

EP 9 - Palo Alto Networks' Daryan Dehghanpisheh on Vulnerability Management

Security Operations & vSOC

Top SOC Service Providers (SOCaaS) for 2026

Best MDR Providers for Regulated Industry & DIB Contractors (2026)

Operational Resilience

EP 57 - Cyber Resilience at the Crossroads

EP 1 - Micro-Ant's Charles McCarrick on Innovation and Opportunity in the DIB

The DIB Innovators

EP 105 — Delta.g's Tony Lowe on Taking Quantum Gravity Sensing From Lab to Field

EP 104 — Impac Systems Engineering's Justin Smart On Cutting The Weight From An Aerospace Part Without Losing Structural Performance

EP 103 — OpenC3's Greg Bonn On How A 20-Year-Old Defense Prime Spin-Out Turned Profitable In Year One