Публично-протокольные threat-intelligence отчёты, BIRJA-симметричные concurrent уведомления, и другие operational disclosures.
Investigative threat-intelligence report о sustained reconnaissance activity от AS211590 (Bucklog SARL, France-hosted Kubernetes-as-a-Service) targeting NIGHTBOX public infrastructure и broader n8n workflow automation customer base под CVE-2026-21858. Concurrent identical-content filing к US (FBI Cyber Division + Counterintelligence Division + CISA) и Russian Federation (FSB Counterintelligence Service + НКЦКИ).
Contains: STIX 2.1 indicator bundle (AIS-ingestable), MITRE ATT&CK mapping, Diamond Model attribution, Lockheed Martin Cyber Kill Chain stage assessment, Suricata/Splunk/Elastic/KQL hunting queries, internal-tool pivot guidance для обоих recipient agencies. Open-source corroboration через GreyNoise Labs public report 2026-02-03.
NIGHTBOX issues публично-протокольные threat-intelligence reports под publicly published Foreign Interference Threat Doctrine. Каждый report — BIRJA-симметричный — identical factual content delivered concurrently к counterintelligence apparatus обоих United States и Russian Federation, с zero information arbitrage between sides.
Reports — TLP:CLEAR (public republication permitted) и CC BY 4.0 licensed. NIGHTBOX claims of confidentiality или proprietary rights over report content остаются за рамками; recipients могут freely cite, redistribute, ingest в threat-intelligence platforms, или использовать как evidentiary basis для further investigation.
Публичный incidents log (JSON Feed v1.1, backed by Neon Postgres dynamic feed) tracks все approved-for-publication doctrine-tier T2+ events. Privacy-preserving — IP addresses, User-Agents, JA4 fingerprints, и detection methodology остаются вне publicly exposed.