14+ years of experience in red teaming, penetration testing, and security strategy. Helping organizations build robust security programs and achieve compliance.

Security Intelligence Newsletter

Weekly insights on threats, vulnerabilities, and security best practices.

Threat Intelligence

OAuth Device Code Vishing: Microsoft Entra Account Takeover TTPs

Threat actors weaponize OAuth 2.0 Device Authorization flow with vishing campaigns to compromise Microsoft Entra accounts across technology, manufacturing, and financial sectors.

6 min readRead more

Threat Intelligence

CRESCENTHARVEST RAT Campaign: Iran Protest Surveillance TTPs

CRESCENTHARVEST campaign deploys custom RAT malware against Iran protest supporters, demonstrating advanced surveillance TTPs for long-term information theft and monitoring operations.

6 min readRead more

Vulnerability Management

CVE-2026-2329: Grandstream VoIP Buffer Overflow Attack Chain

CVE-2026-2329 stack-based buffer overflow in Grandstream GXP1600 VoIP phones allows unauthenticated remote code execution with CVSS 9.3 scoring, enabling network pivoting.

6 min readRead more

Multi-Vector Convergence: Outlook Add-Ins, Zero-Days & AI Malware

Related Topics

Related Services

Red Team Operations

Cloud Security

Share This Article

Satyam Rastogi

Security Intelligence Newsletter

Related Articles

OAuth Device Code Vishing: Microsoft Entra Account Takeover TTPs

CRESCENTHARVEST RAT Campaign: Iran Protest Surveillance TTPs

CVE-2026-2329: Grandstream VoIP Buffer Overflow Attack Chain