APT-News

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

APT-News

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

A sophisticated phishing campaign dubbed “0ktapus” successfully bypassed multi-factor authentication (MFA) protections to compromise over 130 organizations,...

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

APT-News

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

A China-linked advanced persistent threat group known as Earth Baxia has been conducting targeted attacks against government...

Unmasking Prometei: Trend Micro’s MXDR Investigation Reveals Botnet’s Cryptomining Operations

APT-News

Unmasking Prometei: Trend Micro’s MXDR Investigation Reveals Botnet’s Cryptomining Operations

The Prometei botnet has evolved into a sophisticated threat since its emergence in 2016, now leveraging Microsoft...

Earth Estries APT Group’s Long-Term Cyber Espionage Campaign Targeting Global Infrastructure

APT-News

Earth Estries APT Group’s Long-Term Cyber Espionage Campaign Targeting Global Infrastructure

Since 2023, Chinese state-sponsored threat actor Earth Estries (tracked as Salt Typhoon/GhostEmperor/UNC2286) has conducted sophisticated cyber espionage...

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

APT-News

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

The advanced persistent threat (APT) group Earth Preta, also known as Mustang Panda, has refined its evasion...

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

APT-News

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

ESET Research has uncovered a series of cyberespionage campaigns conducted by the advanced persistent threat (APT) group...

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

APT-News

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

ESET researchers have uncovered a significant evolution in the operations of the Telekopye cybercriminal network, which has...

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

APT-News

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

ESET’s latest APT Activity Report for Q2-Q3 2024 reveals significant developments in state-aligned cyber threats, with China,...

RomCom APT Exploits Firefox and Windows Zero-Days in Stealthy Cyberattacks

APT-News

RomCom APT Exploits Firefox and Windows Zero-Days in Stealthy Cyberattacks

Summary for Security Leadership The Russia-aligned RomCom APT group (also tracked as Storm-0978 or UNC2596) has been...

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

APT-News
Threat Intelligence

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

The National Cyber Security Centre (NCSC) and the Digital Trust Center (DTC) have recently issued a warning...

NCSC for Startups: How CounterCraft is Revolutionizing Cybersecurity with Deception Technology

APT-News
Threat Intelligence

NCSC for Startups: How CounterCraft is Revolutionizing Cybersecurity with Deception Technology

In the ever-evolving landscape of cybersecurity, the National Cyber Security Centre (NCSC) is taking a proactive approach...

Dealing with the SolarWinds Orion Compromise: Immediate Actions for Organizations

APT-News
Data Breach

Dealing with the SolarWinds Orion Compromise: Immediate Actions for Organizations

The SolarWinds Orion compromise, disclosed in December 2020, remains one of the most significant cybersecurity incidents in...

Microsoft Trust Signing Service Abused to Code-Sign Malware

APT-News

Microsoft Trust Signing Service Abused to Code-Sign Malware

In a concerning development, cybercriminals have been abusing Microsoft’s Trusted Signing platform to code-sign malware executables with...

Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers

APT-News

Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers

In a significant cybersecurity development, Kaspersky has uncovered evidence suggesting that two known threat activity clusters, Head...

Posts pagination

Previous 1 2

APT-News

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

Unmasking Prometei: Trend Micro’s MXDR Investigation Reveals Botnet’s Cryptomining Operations

Earth Estries APT Group’s Long-Term Cyber Espionage Campaign Targeting Global Infrastructure

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

RomCom APT Exploits Firefox and Windows Zero-Days in Stealthy Cyberattacks

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

Microsoft Trust Signing Service Abused to Code-Sign Malware

Kaspersky Links Head Mare to Twelve, Targeting Russian Entities via Shared C2 Servers

You may have missed

YesWiki Path Traversal Vulnerability (CVE-2025-31131): Technical Analysis and Mitigation

Critical SQL Injection Vulnerability in Next-Cart Store to WooCommerce Migration Plugin (CVE-2025-30807)

WpTravelly Plugin Vulnerability Exposes WordPress Sites to Object Injection Attacks

Critical SQL Injection Vulnerability in WooCommerce Order Splitter Plugin (CVE-2025-31089)