Sivan Nir

Sivan Nir

About Sivan Nir

Sivan Nir is a senior analyst in the Skybox Research Lab, a team of dedicated vulnerability researchers who aggregate and analyze vulnerability data from more than 30 public and private vulnerability data sources. Sivan has more than 10 years’ experience  in business intelligence data analysis. Sivan holds an MBA and a bachelor’s degree in Biotechnology Engineering.
21 11, 2019

First BlueKeep Exploit Hits – Have Lessons Been Learned?

By |2019-11-21T14:29:45-08:00November 21st, 2019|Vulnerability & Threat Management|

A couple of weeks ago, the world woke up to the news of the first BlueKeep exploit. This exploit has been expected since May, when Microsoft took the unusual step of releasing patches for out-of-support product versions alongside a warning that, “it is possible that we won’t see this vulnerability incorporated into malware. But that’s not [...]

26 09, 2019

Scores of IoT and NAS Device Vulnerabilities Discovered

By |2019-09-30T12:23:38-07:00September 26th, 2019|Vulnerability & Threat Management|

There’s a storm brewing for embedded Internet of Things (IoT) and network-attached storage (NAS) devices after the recent discovery of 125 IoT and NAS device vulnerabilities.

29 03, 2018

The Cryptomining Malware Family

By |2018-03-29T11:54:39-07:00March 29th, 2018|Threat Intelligence|

Cryptominers have become their own class of malware, growing in popularity as a low-risk, high-reward way for cybercriminals to make an easy crypto-buck. In this post, we’ll look at the members of the cryptomining malware family and their techniques. Browser-Based Cryptomining Software CoinHive, Crypto-Loot and JSEcoin allow website owners to legitimately monetize website traffic. Favoring [...]

28 03, 2018

Cryptominers More Lucrative, Lower Risk Than Ransomware

By |2018-03-29T11:56:41-07:00March 28th, 2018|Threat Intelligence|

If 2017 was the year of high-profile data breaches and ransomware attacks, 2018 seems to be the year of cryptocurrency-related malware. Cryptominers managed to impact 23 percent of organizations globally. Cryptomining is relatively new, and not all of it is purely malicious. Some cryptominers are considered to be legitimate techniques to gain cryptocurrency, akin to [...]