Profero

Profero's blogpost: profero.io/blog/hijacked-… BleepingComputer article: bleepingcomputer.com/news/security/…

Thank you to @BleepinComputer for covering our latest blogpost on the AppsFlyer Web SDK supply chain attack. Read Profero's full analysis, including IOCs and detection guidance, in the first comment.

Iranian APT targeting of U.S. organizations is expanding beyond government and defense into commercial sectors. We've stopped these operators before they hit. In Operation Quicksand, we intercepted an IRGC-linked destructive campaign mid-deployment. When an Iranian state-sponsored group did get through, we reversed their ransomware, broke the encryption, and recovered the data they tried to destroy. The technical breakdowns are on our site. We're offering U.S. organizations a free Iranian APT Readiness session, exposure review, detection gap analysis, and hardening priorities, led by the responders who handled these operations. DM for the booking link. Know a CISO who should see this? Tag or share.

Read the full blogpost: Hijacked at the Source: A Trusted Marketing AppsFlyer’s SDK distributes a Crypto Stealer profero.io/blog/hijacked-…

Profero IRT identified a supply chain compromise involving the AppsFlyer Web SDK, where obfuscated JavaScript was silently replacing cryptocurrency wallet addresses in user sessions. The payload targeted Bitcoin, Ethereum, Solana, Ripple, and TRON wallets, with built-in fallback infrastructure and wallet rotation capabilities. AppsFlyer is embedded across thousands of websites and apps globally. Full advisory with IOCs and detection guidance on our blog. Link in the first comment.

Read the full advisory: profero.io/blog/p4tr-0t3c…

Disinformation alert: A Telegram narrative claims to reveal doxxing data and breach material against Iranian institutions and APT35. Our OSINT review shows mixed signals; credible data interwoven with fabrication. Read the full advisory, link in the first comment.

Congratulations to the Llama Drama Robotics Team on taking first place and earning a spot in the national competition! Profero is excited and proud to sponsor you and celebrate this amazing achievement.

The clock is always ticking and so are we. Profero's global IR team delivers continuous incident response around the world; attackers don't sleep, neither do we. Our 24/7 experts coordinate rapid incident response across continents, keeping you safe wherever you operate. Ready for round-the-clock incident response? Let's talk.

In the CISO's playbook, the rule is simple: prepare for more, pay for less. When a cyber incident strikes, Profero provides ongoing IR services with no extra costs, that keep the business moving, minimizes impact and helping you recover faster and stay on mission. Because the story isn't just the breach - it's how you respond.

Delve into the inner workings of a Vietnamese threat actor's latest info stealer, using Telegram as its control hub. Find out how they taunt security researchers like Morphisec, while stealing credentials and cryptocurrency wallets. Full story: profero.io/blog/dit-me-ma…

All our current openings are available here: profero.io/careersTake a look and find your next opportunity with us!

Profero is hiring! We're seeking a skilled Senior Frontend Engineer. Be part of a company redefining cybersecurity. Interested? All our current openings are in the first comment!

Your cloud data can be compromised, manipulated, or leaked in just 40 minutes. Waiting hours for response? That's too late. Profero's pro-active IR team guarantees a 20-minute SLA, because the faster we act, the more you protect what matters most.

Goodbye 2025, hello 2026! Wishing you a year filled with proactive defenses, swift responses, and peace of mind. Cheers to a safer year from all of us at Profero!

As this digital Christmas tree glows, so do our wishes for your cyber security and readiness. Have a secured Merry Christmas!

Miracles are celebrated once a year, readiness is built every day. Wishing you a bright, resilient, and secure holiday.

More details available on our careers page: profero.io/careers/incide…

We’re Hiring! Incident Responder Think fast, investigate smarter, and love diving deep into cyber incidents? Perfect, because we’re looking for someone who lives and breathes IR. At Profero, you’ll jump into real-world incidents, work with top-tier defenders, and help companies around the world stay safe. If you’ve got the skills and the mindset, let’s talk. Or tag that friend who’s always two steps ahead of attackers.