Advanced Persistent Threat (APT)

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

APT-News

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

Scattered Spider, a name that has dominated cybersecurity headlines since 2023, represents more than a traditional threat...

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Threat Intelligence

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Microsoft and CrowdStrike announced a joint initiative to create a unified reference system for tracking nation-state hacking...

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

APT-News

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

The Federal Criminal Police Office of Germany (BKA) has publicly identified Vitaly Nikolaevich Kovalev, a 36-year-old Russian...

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

APT-News

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

ConnectWise, a leading IT management software provider, confirmed a cyberattack targeting its ScreenConnect remote access tool in...

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Threat Intelligence

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Threat actors are increasingly abusing Google Apps Script to host phishing pages, leveraging the platform’s trusted reputation...

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

Threat Intelligence

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

The U.S. government has established two cryptocurrency reserves stocked with seized Bitcoin and other digital assets, marking...

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

Red-Team

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

A newly discovered botnet named **PumaBot** is actively targeting Linux-based IoT devices by brute-forcing SSH credentials to...

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

APT-News

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

The DragonForce ransomware group has compromised over 120 managed service providers (MSPs) by exploiting vulnerabilities in SimpleHelp’s...

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

APT-News

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

A newly identified Russian cyberespionage group, tracked as Void Blizzard, has been connected to a September 2024...

3AM Ransomware: Social Engineering Tactics and Technical Defenses

Threat Intelligence

3AM Ransomware: Social Engineering Tactics and Technical Defenses

A new wave of highly targeted 3AM ransomware attacks is leveraging email bombing and spoofed IT support...

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

APT-News

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

A threat actor known as **Hazy Hawk** has been actively exploiting DNS misconfigurations to hijack abandoned cloud...

RVTools Supply Chain Attack Delivers Bumblebee Malware Loader

Malware Analysis

RVTools Supply Chain Attack Delivers Bumblebee Malware Loader

The official website for RVTools, a widely used VMware management utility, was compromised in a supply chain...

Arla Foods Cyberattack: Ransomware Disrupts Dairy Production and Supply Chains

APT-News

Arla Foods Cyberattack: Ransomware Disrupts Dairy Production and Supply Chains

Arla Foods, one of Europe’s largest dairy producers, confirmed a ransomware attack on its Düsseldorf factory, halting...

Apple’s AI Partnership with Alibaba Sparks U.S. National Security Concerns

APT-News

Apple’s AI Partnership with Alibaba Sparks U.S. National Security Concerns

The Trump administration and congressional officials have raised objections to Apple’s proposed integration of Alibaba’s artificial intelligence...

ClickFix Attacks Expand to Linux: Tactics, Payloads, and Mitigation Strategies

APT-News

ClickFix Attacks Expand to Linux: Tactics, Payloads, and Mitigation Strategies

A new wave of ClickFix attacks has emerged, now targeting Linux systems alongside Windows, marking a significant...

Israel’s Evacuation Warning for Sanaa Airport: Escalation in Yemen Conflict

APT-News

Israel’s Evacuation Warning for Sanaa Airport: Escalation in Yemen Conflict

Following a series of retaliatory airstrikes, Israel has issued an urgent evacuation warning for Yemen’s Sanaa International...

Escalating Cyber Threats Against New Mexico Schools: Incident Analysis and Response

APT-News

Escalating Cyber Threats Against New Mexico Schools: Incident Analysis and Response

A recent cyberattack on the Coweta County School System in Georgia has raised alarms for educational institutions...

Chinese Espionage in London: Technical Analysis of Public Space Surveillance

APT-News

Chinese Espionage in London: Technical Analysis of Public Space Surveillance

Recent reports from UK security sources indicate that Chinese intelligence operatives have deployed listening devices in high-traffic...

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

APT-News

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

Ukrainian forces have successfully destroyed a rare Russian Zaslon mobile naval radar system in a targeted drone...

China’s Deep-Sea Cable Disruption Capabilities: Technical Realities and Geopolitical Implications

APT-News

China’s Deep-Sea Cable Disruption Capabilities: Technical Realities and Geopolitical Implications

Recent reports of China developing deep-sea cable-cutting technology capable of operating at 13,000 feet have raised concerns...

Posts pagination

Previous 1 2 3 4 5 … 8 Next

Advanced Persistent Threat (APT)

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

Google Apps Script Exploited in Sophisticated Phishing Campaigns

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

Hazy Hawk Gang Exploits DNS Misconfigurations to Hijack Trusted Domains

RVTools Supply Chain Attack Delivers Bumblebee Malware Loader

Arla Foods Cyberattack: Ransomware Disrupts Dairy Production and Supply Chains

Apple’s AI Partnership with Alibaba Sparks U.S. National Security Concerns

ClickFix Attacks Expand to Linux: Tactics, Payloads, and Mitigation Strategies

Israel’s Evacuation Warning for Sanaa Airport: Escalation in Yemen Conflict

Escalating Cyber Threats Against New Mexico Schools: Incident Analysis and Response

Chinese Espionage in London: Technical Analysis of Public Space Surveillance

Ukrainian Forces Destroy Russian Zaslon Naval Radar System in Drone Strike

China’s Deep-Sea Cable Disruption Capabilities: Technical Realities and Geopolitical Implications

You may have missed

Anthropic’s Claude AI Gains Autonomous Conversation Termination to Mitigate Abuse

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Meta’s Erroneous Instagram Account Bans: Technical Implications for Security Teams

Supreme Court’s Decision on Mississippi Social Media Age Verification Law: Technical and Legal Implications