Kristina Balaam's Avatar

Kristina Balaam

@kristinabalaam

πŸ’» Senior Staff Researcher @Lookout. δΈ­ζ–‡ε­¦δΉ . China-Focused Threat Intelligence. Malware, Geopolitics, Human Rights. Opinions my own.

391
Followers 113
Following 4
Posts 21.11.2024
Joined
Posts Following

Latest posts by Kristina Balaam @kristinabalaam

So many great talks! CANNOT WAIT! πŸŽ‰

07.03.2025 16:46 πŸ‘ 4 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Multiple Russian Threat Actors Targeting Microsoft Device Code Authentication Starting in mid-January 2025, Volexity identified several social-engineering and spear-phishing campaigns by Russian threat actors aimed at compromising Microsoft 365 (M365) accounts. These attack cam...

@volexity.com recently identified multiple Russian threat actors targeting users via #socialengineering + #spearphishing campaigns with Microsoft 365 Device Code authentication (a well-known technique) with alarming success: www.volexity.com/blog/2025/02...

#dfir #threatintel #m365security

13.02.2025 22:39 πŸ‘ 35 πŸ” 20 πŸ’¬ 2 πŸ“Œ 7

or the number of times marketing / journalists ask, "can you attribute this to Winnti or Mustang Panda?" 🫠

14.02.2025 17:23 πŸ‘ 2 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

We are waiting for your submissions until 7 February #CfP #ThreatIntel #PIVOTcon25 #CTI #ThreatResearch
#DontBeLikeAnakin πŸ‘‡

09.01.2025 16:13 πŸ‘ 5 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Preview
No Escape: The Weaponization of Gender for the Purposes of Digital Transnational Repression - The Citizen Lab Building upon our prior research and the contributions of other scholars to this field, the aim of this novel study is to understand the security risks and harms caused by digital transnational repres...

NEW REPORT: We investigate the rising trend of gender-based digital transnational repression by drawing on the lived experiences of 85 women human rights defenders living in exile across the globe.
Read the full report: citizenlab.ca/2024/12/the-...

02.12.2024 13:14 πŸ‘ 172 πŸ” 98 πŸ’¬ 4 πŸ“Œ 14
Preview
Introduction to Investigative Journalism: Digital Security Digital security may seem a little daunting at first, but increased security will help investigative journalists build trust with β€” and protect β€” current and future sources.

I wrote a very timely introduction to digital security for journalists for @gijn.org, this guidance may also apply to activists, lawyers, and anyone else doing at-risk work these days. gijn.org/resource/int...

27.11.2024 11:39 πŸ‘ 159 πŸ” 77 πŸ’¬ 8 πŸ“Œ 9
Post image

www.semafor.com/article/11/2...

26.11.2024 18:38 πŸ‘ 274 πŸ” 99 πŸ’¬ 13 πŸ“Œ 27
Preview
DPRK IT Workers | A Network of Active Front Companies and Their Links to China SentinelLabs has identified multiple deceptive websites linked to businesses in China fronting for North Korea's fake IT workers scheme.

πŸ”₯ πŸ‡°πŸ‡΅ @sentinellabs.bsky.social has found an active network of North Korean IT Worker front companies linked to China, overlapping with four companies recently disrupted by U.S. government agencies.

Read the research by @hegel.bsky.social and @dakotaindc.bsky.social: s1.ai/IT-Front

25.11.2024 18:25 πŸ‘ 10 πŸ” 5 πŸ’¬ 1 πŸ“Œ 3

I hate everything about this.

25.11.2024 22:40 πŸ‘ 5 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Words cannot describe how happy I am to now be on a microblogging site where I'm not pummelled with the owner's content whenever I log in. (I was never even following him.)

25.11.2024 22:34 πŸ‘ 9 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Preview
Banned Books: Analysis of Censorship on Amazon.com - The Citizen Lab We analyze the system Amazon deploys on the US β€œamazon.com” storefront to restrict shipments of certain products to specific regions. We found 17,050 products that Amazon restricted from being shipped...

πŸ“’ Our latest report reveals that the US storefront of Amazon uses a system to restrict shipments of certain products. We found 17k+ products that were restricted from being shipped to specific regions, with the most common type of product being books πŸ“š.
citizenlab.ca/2024/11/anal...

25.11.2024 20:37 πŸ‘ 38 πŸ” 21 πŸ’¬ 2 πŸ“Œ 7