Advanced Persistent Threat (APT)

North Korean IT Worker Scheme: A Technical Analysis of Infiltration and Fraud

APT-News

North Korean IT Worker Scheme: A Technical Analysis of Infiltration and Fraud

In a significant enforcement action, the U.S. Department of Justice announced that five individuals have pleaded guilty...

DanaBot Malware Resurfaces with New Infrastructure After Law Enforcement Takedown

Malware Analysis

DanaBot Malware Resurfaces with New Infrastructure After Law Enforcement Takedown

The DanaBot malware operation has resumed its malicious activities, deploying a new version in active campaigns just...

Triofox Antivirus Feature Abused for SYSTEM-Level Code Execution

CVE News

Triofox Antivirus Feature Abused for SYSTEM-Level Code Execution

A critical vulnerability in Gladinet’s Triofox file-sharing platform has been actively exploited by threat actors to bypass...

North Korean Cyber Operations: A Record-Breaking Year in Cryptocurrency Theft

APT-News

North Korean Cyber Operations: A Record-Breaking Year in Cryptocurrency Theft

Security researchers are reporting that state-sponsored cyber actors linked to North Korea have stolen unprecedented amounts of...

BrickStorm Malware Campaign: A Year-Long Espionage Operation Targeting U.S. Organizations

APT-News

BrickStorm Malware Campaign: A Year-Long Espionage Operation Targeting U.S. Organizations

A sophisticated cyberespionage campaign, attributed to suspected Chinese hackers, has been actively targeting U.S. organizations for over...

Apple Extends Zero-Day Patch to Legacy iOS and iPadOS Devices

CVE News

Apple Extends Zero-Day Patch to Legacy iOS and iPadOS Devices

Apple has released security updates for older iPhone and iPad models, backporting a critical fix for a...

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

CVE News

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

SAP has released patches for 21 new security flaws, including three critical vulnerabilities in its widely used...

UK Electoral Commission Hack: A Three-Year Recovery and State-Sponsored Attribution

APT-News

UK Electoral Commission Hack: A Three-Year Recovery and State-Sponsored Attribution

The United Kingdom’s Electoral Commission has disclosed that recovery from a significant state-sponsored cyber intrusion, first detected...

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

APT-News

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

The National Cyber and Information Security Agency of the Czech Republic (NÚKIB) has formally instructed organizations within...

U.S. Places $10 Million Bounty on Russian FSB Cyber Officers

APT-News

U.S. Places $10 Million Bounty on Russian FSB Cyber Officers

The U.S. Department of State has announced a reward of up to $10 million for information leading...

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

Threat Intelligence

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

The weaponization of geolocation data represents one of the most significant shifts in offensive cyber operations, transforming...

Federal Judiciary’s Repeated Cyber Breaches Highlight Systemic Security Failures

APT-News

Federal Judiciary’s Repeated Cyber Breaches Highlight Systemic Security Failures

A sophisticated cyberattack attributed to Russian state-sponsored actors breached the U.S. federal judiciary’s critical Case Management/Electronic Case...

Amazon Disrupts APT29’s Sophisticated Microsoft 365 Watering Hole Campaign

APT-News

Amazon Disrupts APT29’s Sophisticated Microsoft 365 Watering Hole Campaign

Amazon’s threat intelligence team has successfully identified and disrupted a sophisticated watering hole campaign in June 2025,...

Expansion of Chinese Cyber Campaigns Targets Global Telecommunications and Critical Infrastructure

APT-News

Expansion of Chinese Cyber Campaigns Targets Global Telecommunications and Critical Infrastructure

The Federal Bureau of Investigation has issued a warning that a confirmed Chinese state-sponsored hacking campaign has...

Murky Panda APT Exploits Cloud Trust Relationships in Downstream Attacks

APT-News

Murky Panda APT Exploits Cloud Trust Relationships in Downstream Attacks

A Chinese state-sponsored hacking group tracked as Murky Panda, also known as Silk Typhoon, is systematically exploiting...

APT36 Expands Linux Targeting with Malicious .desktop Files and ClickFix Social Engineering

APT-News

APT36 Expands Linux Targeting with Malicious .desktop Files and ClickFix Social Engineering

The Pakistan-linked threat actor APT36 (also known as Transparent Tribe or Mythic Leopard) has significantly evolved its...

Scattered Spider Member Sentenced to 10 Years Following SIM-Swapping and Corporate Phishing Campaigns

Cyber Laws & Regulations

Scattered Spider Member Sentenced to 10 Years Following SIM-Swapping and Corporate Phishing Campaigns

Noah Michael Urban, a 20-year-old from Palm Coast, Florida and a central member of the Scattered Spider...

Profero Cracks DarkBit Ransomware Encryption, Enables Free Data Recovery

APT-News

Profero Cracks DarkBit Ransomware Encryption, Enables Free Data Recovery

Cybersecurity firm Profero has successfully reverse-engineered the encryption mechanism used by the DarkBit ransomware group, enabling victims...

WinRAR Zero-Day Exploited in Phishing Attacks to Deploy RomCom Malware

CVE News

WinRAR Zero-Day Exploited in Phishing Attacks to Deploy RomCom Malware

A critical WinRAR vulnerability, tracked as CVE-2025-8088, was actively exploited as a zero-day in phishing campaigns to...

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

APT-News

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

The cybercrime group Scattered Spider has intensified attacks targeting VMware ESXi hypervisors across U.S. retail, airline, transportation,...

Posts pagination

1 2 3 4 … 9 Next

Advanced Persistent Threat (APT)

DanaBot Malware Resurfaces with New Infrastructure After Law Enforcement Takedown

Triofox Antivirus Feature Abused for SYSTEM-Level Code Execution

North Korean Cyber Operations: A Record-Breaking Year in Cryptocurrency Theft

Apple Extends Zero-Day Patch to Legacy iOS and iPadOS Devices

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

UK Electoral Commission Hack: A Three-Year Recovery and State-Sponsored Attribution

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

U.S. Places $10 Million Bounty on Russian FSB Cyber Officers

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

Federal Judiciary’s Repeated Cyber Breaches Highlight Systemic Security Failures

Expansion of Chinese Cyber Campaigns Targets Global Telecommunications and Critical Infrastructure

APT36 Expands Linux Targeting with Malicious .desktop Files and ClickFix Social Engineering

Profero Cracks DarkBit Ransomware Encryption, Enables Free Data Recovery

WinRAR Zero-Day Exploited in Phishing Attacks to Deploy RomCom Malware

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

You may have missed

Google Play Store to Implement Battery Performance Policy for Android Apps

ClickFix Malware Campaigns Resurrect Decades-Old Finger Protocol for Command Retrieval

North Korean IT Worker Scheme: A Technical Analysis of Infiltration and Fraud

Digital Passport Integration in Mobile Wallets: A Security Analysis