Advanced Persistent Threat (APT)

Ryuk Ransomware Operative Extradited: Implications for Cybersecurity

APT-News

Ryuk Ransomware Operative Extradited: Implications for Cybersecurity

A key member of the Ryuk ransomware operation, specializing in initial network access, has been extradited to...

U.S. Insurance Firms Face Escalating Cyberattacks from Scattered Spider and UNC3944

Threat Intelligence

U.S. Insurance Firms Face Escalating Cyberattacks from Scattered Spider and UNC3944

Threat actors linked to Scattered Spider and UNC3944 have shifted focus to U.S. insurance companies, deploying social...

WestJet Investigates Cyberattack Disrupting Internal Systems: Technical Analysis and Industry Context

APT-News

WestJet Investigates Cyberattack Disrupting Internal Systems: Technical Analysis and Industry Context

WestJet, Canada’s second-largest airline, is investigating a cyberattack that has disrupted access to internal systems, according to...

Victoria’s Secret Cyberattack: Phishing, Ransomware, and Third-Party Impacts

Data Breach

Victoria’s Secret Cyberattack: Phishing, Ransomware, and Third-Party Impacts

Victoria’s Secret has restored critical systems following a May 24 cyberattack that disrupted corporate operations and e-commerce...

Graphite Spyware Targets Journalists via iOS Zero-Click Exploits

APT-News

Graphite Spyware Targets Journalists via iOS Zero-Click Exploits

Forensic investigations have confirmed the use of Paragon’s Graphite spyware in zero-click attacks against Apple iOS devices...

Fog Ransomware’s Unusual Toolset: Legitimate Software and Open-Source Utilities in Attacks

Threat Intelligence

Fog Ransomware’s Unusual Toolset: Legitimate Software and Open-Source Utilities in Attacks

The Fog ransomware group has emerged as a significant threat in 2024-2025, distinguished by its unconventional blend...

FIN6 Hackers Target Recruiters with Fake Job Applications Delivering More_eggs Malware

APT-News

FIN6 Hackers Target Recruiters with Fake Job Applications Delivering More_eggs Malware

In a notable shift from traditional social engineering tactics, the financially motivated FIN6 hacking group has begun...

UNFI Cyberattack Disrupts Grocery Supply Chain: Technical Analysis and Response

Threat Intelligence

UNFI Cyberattack Disrupts Grocery Supply Chain: Technical Analysis and Response

United Natural Foods (UNFI), North America’s largest wholesale grocery distributor, confirmed a cyberattack on June 5, 2025...

US Offers $10M Reward for Intel on RedLine Malware-Linked State Hackers

APT-News

US Offers $10M Reward for Intel on RedLine Malware-Linked State Hackers

The U.S. Department of State has escalated its efforts to combat state-sponsored cyber threats by offering a...

Lee Enterprises Data Breach: Qilin Ransomware Attack Impacts 39,000 Individuals

Data Breach

Lee Enterprises Data Breach: Qilin Ransomware Attack Impacts 39,000 Individuals

Lee Enterprises, a major US media conglomerate, has confirmed a February 2025 ransomware attack compromised personal data...

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

APT-News

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

Scattered Spider, a name that has dominated cybersecurity headlines since 2023, represents more than a traditional threat...

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Threat Intelligence

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Microsoft and CrowdStrike announced a joint initiative to create a unified reference system for tracking nation-state hacking...

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

APT-News

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

The Federal Criminal Police Office of Germany (BKA) has publicly identified Vitaly Nikolaevich Kovalev, a 36-year-old Russian...

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

APT-News

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

ConnectWise, a leading IT management software provider, confirmed a cyberattack targeting its ScreenConnect remote access tool in...

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Threat Intelligence

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Threat actors are increasingly abusing Google Apps Script to host phishing pages, leveraging the platform’s trusted reputation...

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

Threat Intelligence

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

The U.S. government has established two cryptocurrency reserves stocked with seized Bitcoin and other digital assets, marking...

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

Red-Team

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

A newly discovered botnet named **PumaBot** is actively targeting Linux-based IoT devices by brute-forcing SSH credentials to...

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

APT-News

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

The DragonForce ransomware group has compromised over 120 managed service providers (MSPs) by exploiting vulnerabilities in SimpleHelp’s...

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

APT-News

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

A newly identified Russian cyberespionage group, tracked as Void Blizzard, has been connected to a September 2024...

3AM Ransomware: Social Engineering Tactics and Technical Defenses

Threat Intelligence

3AM Ransomware: Social Engineering Tactics and Technical Defenses

A new wave of highly targeted 3AM ransomware attacks is leveraging email bombing and spoofed IT support...

Posts pagination

1 2 3 4 … 8 Next

Advanced Persistent Threat (APT)

Ryuk Ransomware Operative Extradited: Implications for Cybersecurity

U.S. Insurance Firms Face Escalating Cyberattacks from Scattered Spider and UNC3944

WestJet Investigates Cyberattack Disrupting Internal Systems: Technical Analysis and Industry Context

Victoria’s Secret Cyberattack: Phishing, Ransomware, and Third-Party Impacts

Graphite Spyware Targets Journalists via iOS Zero-Click Exploits

Fog Ransomware’s Unusual Toolset: Legitimate Software and Open-Source Utilities in Attacks

UNFI Cyberattack Disrupts Grocery Supply Chain: Technical Analysis and Response

US Offers $10M Reward for Intel on RedLine Malware-Linked State Hackers

Lee Enterprises Data Breach: Qilin Ransomware Attack Impacts 39,000 Individuals

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

Google Apps Script Exploited in Sophisticated Phishing Campaigns

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

You may have missed

Cloudflare Mitigates Record 7.3 Tbps DDoS Attack: Technical Breakdown

Securing Self-Service Password Resets: Best Practices for Enterprise Security

Microsoft’s Legacy Driver Removal from Windows Update: Security Implications and Mitigations

BBC Threatens Legal Action Against AI Firm Perplexity Over Unauthorized Content Scraping