Advanced Persistent Threat (APT)

Chinese Espionage in London: Technical Analysis of Public Space Surveillance Tactics

APT-News

Chinese Espionage in London: Technical Analysis of Public Space Surveillance Tactics

Recent reports from UK security agencies allege that Chinese operatives have deployed physical surveillance devices in high-traffic...

State-Sponsored Hackers Adopt ClickFix Social Engineering for Global Cyber Espionage

APT-News

State-Sponsored Hackers Adopt ClickFix Social Engineering for Global Cyber Espionage

State-sponsored threat actors from North Korea, Iran, and Russia are increasingly leveraging the “ClickFix” social engineering tactic...

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

Malware Analysis

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

An alleged operator of the SmokeLoader malware, identified as Nicholas Moses (alias “scrublord”), is facing federal hacking...

Russian Hacker Sentenced for DDoS Attack: Domestic Crackdown Amid Geopolitical Tensions

Threat Intelligence

Russian Hacker Sentenced for DDoS Attack: Domestic Crackdown Amid Geopolitical Tensions

A Russian court has sentenced a Rostov region resident to two years in a penal colony and...

Cyberattack Targets Polish Ruling Party Ahead of Presidential Election

APT-News

Cyberattack Targets Polish Ruling Party Ahead of Presidential Election

Polish Prime Minister Donald Tusk confirmed a cyberattack targeting his Civic Platform (PO) party’s IT systems on...

Ransomware Groups and Russian Hackers Adopt Fast-Flux DNS for Infrastructure Evasion

Threat Intelligence

Ransomware Groups and Russian Hackers Adopt Fast-Flux DNS for Infrastructure Evasion

Cybercriminal groups, including ransomware operators and Russian state-sponsored actors, are reviving an old technique called “fast flux”...

Ivanti Connect Secure Zero-Day Exploited by China-Linked APT Since Mid-March 2025

CVE News

Ivanti Connect Secure Zero-Day Exploited by China-Linked APT Since Mid-March 2025

Ivanti has released critical patches for two zero-day vulnerabilities (CVE-2025-22457 and CVE-2025-0282) in its Connect Secure (ICS),...

China’s Deep-Sea Electromagnetic Device: Assessing the Threat to Undersea Infrastructure

Threat Intelligence

China’s Deep-Sea Electromagnetic Device: Assessing the Threat to Undersea Infrastructure

Recent reports of a Chinese deep-sea electromagnetic device capable of disrupting global communications and energy networks have...

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

APT-News

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

The National Defense Corporation (NDC) has confirmed a ransomware attack targeting its subsidiary AMTEC, a major manufacturer...

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

APT-News

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

Recent intelligence reports indicate that Russia, China, and North Korea are actively probing UK digital infrastructure with...

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

APT-News

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

After a period of inactivity, the Chinese cyber espionage group FamousSparrow has reemerged with upgraded tools and...

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

APT-News

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

Ukrzaliznytsia, Ukraine’s state-owned railway operator, has restored online ticket sales after a sophisticated cyberattack disrupted its systems...

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

APT-News

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

Belgian government portals, including the citizen services platform MyGov.be and the Walloon Parliament website, experienced service disruptions...

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Threat Intelligence

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Generative AI tools like Google’s Gemini are increasingly being weaponized by state-sponsored threat actors, according to recent...

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

Threat Intelligence

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, named “Morphing Meerkat,” has been leveraging DNS mail exchange (MX) records...

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Malware Analysis

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Elastic Security Labs has uncovered a sophisticated malware campaign targeting Iraq’s telecommunications sector, utilizing a new malware...

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT-News

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

Russian state-aligned hackers have launched a sophisticated phishing campaign impersonating the U.S. Central Intelligence Agency (CIA) to...

Mozilla Patches Critical Windows Sandbox Escape Flaw Linked to Chrome Zero-Day

CVE News

Mozilla Patches Critical Windows Sandbox Escape Flaw Linked to Chrome Zero-Day

Mozilla has issued an emergency update for Firefox on Windows to address a critical sandbox escape vulnerability...

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

APT-News

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

An advanced persistent threat (APT) group linked to Pakistan has been observed impersonating India’s postal service to...

PJobRAT Malware Targets Taiwanese Users Through Fake Chat Apps

APT-News

PJobRAT Malware Targets Taiwanese Users Through Fake Chat Apps

A new campaign involving the Android malware PJobRAT has been identified, specifically targeting users in Taiwan through...

Posts pagination

Previous 1 … 3 4 5 6 7 8 Next

Advanced Persistent Threat (APT)

Chinese Espionage in London: Technical Analysis of Public Space Surveillance Tactics

Federal Charges Filed Against Alleged SmokeLoader Malware Operator in Vermont

Russian Hacker Sentenced for DDoS Attack: Domestic Crackdown Amid Geopolitical Tensions

Cyberattack Targets Polish Ruling Party Ahead of Presidential Election

Ransomware Groups and Russian Hackers Adopt Fast-Flux DNS for Infrastructure Evasion

Ivanti Connect Secure Zero-Day Exploited by China-Linked APT Since Mid-March 2025

China’s Deep-Sea Electromagnetic Device: Assessing the Threat to Undersea Infrastructure

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

Mozilla Patches Critical Windows Sandbox Escape Flaw Linked to Chrome Zero-Day

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

PJobRAT Malware Targets Taiwanese Users Through Fake Chat Apps

You may have missed

Russia’s Throttling of Cloudflare: Technical Impact and Security Implications

Livestreamed Child Exploitation: Technical and Legal Implications of a Disturbing Case

UNFI Cyberattack: Supply Chain Disruption and Recovery Analysis

Hawaiian Airlines Cyberattack: IT Systems Compromised, Flight Operations Unaffected