{
	"id": "5905c552-fc43-4fb7-a997-f54338dd94d3",
	"created_at": "2026-04-06T00:13:42.024804Z",
	"updated_at": "2026-04-10T03:34:43.900874Z",
	"deleted_at": null,
	"sha1_hash": "4ea12dedb37e125b92f7c4c64e83cdd8a0d1c88d",
	"title": "Cloud Security Resources",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 78805,
	"plain_text": "Cloud Security Resources\r\nArchived: 2026-04-02 11:50:02 UTC\r\nFilter by\r\nContent Types\r\nBlog posts\r\nDatasheets\r\nEvents\r\nInfographics\r\nInsights\r\nPodcasts\r\nSecurity reports\r\nTechnical guides\r\nVideos\r\nWebinars\r\nWhitepapers\r\nTopics\r\nBOD Insights\r\nCISO Insights\r\nCloud Security Transformation\r\nFrontline Intelligence \u0026 Expertise\r\nSecurity \u0026 Identity\r\nSecurity Operations\r\nThreat Intelligence\r\nFeatured filters\r\nThreat Intelligence Insights\r\nThe latest curated blogs, reports, and insights from Mandiant Frontline Experts.\r\nSecurity Reports\r\nA collection of reports that address key challenges and findings around Threat Intelligence and Expertise, Security\r\nOperations, Cloud Security.\r\nPreparing for Threats to Come: Cybersecurity Forecast 2026\r\nhttps://www.mandiant.com/resources/reports\r\nPage 1 of 3\n\nNov 2025\r\nEvery November, we make it our mission to equip organizations with the knowledge needed to stay ahead\r\nof threats we anticipate in the coming year.\r\nCloud CISO Perspectives: AI as a strategic imperative to manage risk\r\nNov 2025\r\nWelcome to the second Cloud CISO Perspectives for October 2025.\r\nPQC in plaintext: How we're helping customers prepare for a quantum-safe future\r\nOct 2025\r\nGoogle has been working on making computing quantum safe for almost a decade.\r\nKeys to the Kingdom: A Defender's Guide to Privileged Account Monitoring\r\nOct 2025\r\nThe Criticality of Privileged Access in Today's Threat LandscapePrivileged access stands as the most\r\ncritical pathway for adversaries seeking to compromise sensitive systems and data.\r\nEnabling a safe agentic web with reCAPTCHA\r\nOct 2025\r\nThe emergence of the agentic web — an internet where autonomous AI agents can independently execute\r\ncomplex, multi-step tasks and transactions that previously required human interaction — promises a\r\nfundamental shift for how customers and businesses interact.\r\nA practical guide to Google Cloud's Parameter Manager\r\nOct 2025\r\nEvery development team wants to build robust, secure, and scalable cloud applications, and that often\r\nmeans navigating complexity — especially when it comes to configuration management.\r\nHelp Wanted: Vietnamese Actors Using Fake Job Posting Campaigns to Deliver Malware and Steal\r\nCredentials\r\nOct 2025\r\nGoogle Threat Intelligence Group (GTIG) is tracking a cluster of financially motivated threat actors\r\noperating from Vietnam that leverages fake job postings on legitimate platforms to target individuals in the\r\ndigital advertising and marketing sectors.\r\nHow Model Armor can help protect your AI apps from prompt injections and jailbreaks\r\nhttps://www.mandiant.com/resources/reports\r\nPage 2 of 3\n\nOct 2025\r\nAs AI continues to rapidly develop, it’s crucial that IT teams address the business and organizational risks\r\nposed by two common threats: prompt injection and jailbreaking.\r\nPro-Russia Information Operations Leverage Russian Drone Incursions into Polish Airspace\r\nOct 2025\r\nGoogle Threat Intelligence Group (GTIG) observed multiple instances of pro-Russia information\r\noperations (IO) actors promoting narratives related to the reported incursion of Russian drones into Polish\r\nairspace that occurred on Sept. 9-10, 2025.\r\nWhat’s new in Cloud Armor: Innovations to boost security posture, threat protection\r\nOct 2025\r\nIn today's complex threat landscape, effectively managing network security is crucial — especially across\r\ndiverse environments.\r\nTo Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER\r\nOct 2025\r\nCOLDRIVER, a Russian state-sponsored threat group known for targeting high profile individuals in\r\nNGOs, policy advisors and dissidents, swiftly shifted operations after the May 2025 public disclosure of its\r\nLOSTKEYS malware, operationalizing new malware families five days later.\r\nNew from Mandiant Academy: Protect your perimeter with practical network training\r\nOct 2025\r\nFor too long, network data analysis has felt less like a science and more like deciphering cryptic clues. To\r\nhelp close that gap, we’re introducing a new Mandiant Academy course from Google Cloud, designed to\r\nreplace frustration with clarity and confidence.\r\nSource: https://www.mandiant.com/resources/reports\r\nhttps://www.mandiant.com/resources/reports\r\nPage 3 of 3",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"MITRE"
	],
	"references": [
		"https://www.mandiant.com/resources/reports"
	],
	"report_names": [
		"reports"
	],
	"threat_actors": [
		{
			"id": "aa73cd6a-868c-4ae4-a5b2-7cb2c5ad1e9d",
			"created_at": "2022-10-25T16:07:24.139848Z",
			"updated_at": "2026-04-10T02:00:04.878798Z",
			"deleted_at": null,
			"main_name": "Safe",
			"aliases": [],
			"source_name": "ETDA:Safe",
			"tools": [
				"DebugView",
				"LZ77",
				"OpenDoc",
				"SafeDisk",
				"TypeConfig",
				"UPXShell",
				"UsbDoc",
				"UsbExe"
			],
			"source_id": "ETDA",
			"reports": null
		},
		{
			"id": "79bd28a6-dc10-419b-bee7-25511ae9d3d4",
			"created_at": "2023-01-06T13:46:38.581534Z",
			"updated_at": "2026-04-10T02:00:03.029872Z",
			"deleted_at": null,
			"main_name": "Callisto",
			"aliases": [
				"BlueCharlie",
				"Star Blizzard",
				"TAG-53",
				"Blue Callisto",
				"TA446",
				"IRON FRONTIER",
				"UNC4057",
				"COLDRIVER",
				"SEABORGIUM",
				"GOSSAMER BEAR"
			],
			"source_name": "MISPGALAXY:Callisto",
			"tools": [],
			"source_id": "MISPGALAXY",
			"reports": null
		},
		{
			"id": "3aedca2f-6f6c-4470-af26-a46097d3eab5",
			"created_at": "2024-11-01T02:00:52.689773Z",
			"updated_at": "2026-04-10T02:00:05.396502Z",
			"deleted_at": null,
			"main_name": "Star Blizzard",
			"aliases": [
				"Star Blizzard",
				"SEABORGIUM",
				"Callisto Group",
				"TA446",
				"COLDRIVER"
			],
			"source_name": "MITRE:Star Blizzard",
			"tools": [
				"Spica"
			],
			"source_id": "MITRE",
			"reports": null
		},
		{
			"id": "3a057a97-db21-4261-804b-4b071a03c124",
			"created_at": "2024-06-04T02:03:07.953282Z",
			"updated_at": "2026-04-10T02:00:03.813595Z",
			"deleted_at": null,
			"main_name": "IRON FRONTIER",
			"aliases": [
				"Blue Callisto ",
				"BlueCharlie ",
				"CALISTO ",
				"COLDRIVER ",
				"Callisto Group ",
				"GOSSAMER BEAR ",
				"SEABORGIUM ",
				"Star Blizzard ",
				"TA446 "
			],
			"source_name": "Secureworks:IRON FRONTIER",
			"tools": [
				"Evilginx2",
				"Galileo RCS",
				"SPICA"
			],
			"source_id": "Secureworks",
			"reports": null
		}
	],
	"ts_created_at": 1775434422,
	"ts_updated_at": 1775792083,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/4ea12dedb37e125b92f7c4c64e83cdd8a0d1c88d.pdf",
		"text": "https://archive.orkl.eu/4ea12dedb37e125b92f7c4c64e83cdd8a0d1c88d.txt",
		"img": "https://archive.orkl.eu/4ea12dedb37e125b92f7c4c64e83cdd8a0d1c88d.jpg"
	}
}