Advanced Persistent Threats

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

APT-News

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

The National Defense Corporation (NDC) has confirmed a ransomware attack targeting its subsidiary AMTEC, a major manufacturer...

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

APT-News

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

Recent intelligence reports indicate that Russia, China, and North Korea are actively probing UK digital infrastructure with...

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

APT-News

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

Russian drone attacks on Kharkiv, Ukraine’s second-largest city, killed at least two civilians and injured dozens, including...

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

APT-News

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

After a period of inactivity, the Chinese cyber espionage group FamousSparrow has reemerged with upgraded tools and...

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

APT-News

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

Ukrzaliznytsia, Ukraine’s state-owned railway operator, has restored online ticket sales after a sophisticated cyberattack disrupted its systems...

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

APT-News

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

Belgian government portals, including the citizen services platform MyGov.be and the Walloon Parliament website, experienced service disruptions...

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Threat Intelligence

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Generative AI tools like Google’s Gemini are increasingly being weaponized by state-sponsored threat actors, according to recent...

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

Threat Intelligence

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, named “Morphing Meerkat,” has been leveraging DNS mail exchange (MX) records...

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

Threat Intelligence

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

A newly identified phishing-as-a-service (PhaaS) operation, dubbed Morphing Meerkat by researchers, has adopted DNS-over-HTTPS (DoH) to bypass...

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT-News

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

Russian state-aligned hackers have launched a sophisticated phishing campaign impersonating the U.S. Central Intelligence Agency (CIA) to...

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

APT-News

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

An advanced persistent threat (APT) group linked to Pakistan has been observed impersonating India’s postal service to...

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

Threat Intelligence

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, dubbed Morphing Meerkat, is dynamically impersonating over 114 brands by abusing...

PJobRAT Malware Targets Taiwanese Users Through Fake Chat Apps

APT-News

PJobRAT Malware Targets Taiwanese Users Through Fake Chat Apps

A new campaign involving the Android malware PJobRAT has been identified, specifically targeting users in Taiwan through...

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

APT-News

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

A new ransomware-as-a-service (RaaS) operation dubbed “VanHelsing” has surfaced, targeting multiple operating systems and employing double extortion...

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

APT-News

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

In a coordinated international operation, INTERPOL has arrested 306 suspects and seized 1,842 electronic devices in a...

Google TAG Q2 2023 Bulletin: State-Sponsored Influence Operations and Spam Networks

Threat Intelligence

Google TAG Q2 2023 Bulletin: State-Sponsored Influence Operations and Spam Networks

Google’s Threat Analysis Group (TAG) has released its Q2 2023 bulletin, providing critical insights into coordinated influence...

Google TAG Q2 2024 Report: State-Linked Influence Operations Targeted Across Platforms

Threat Intelligence

Google TAG Q2 2024 Report: State-Linked Influence Operations Targeted Across Platforms

Google’s Threat Analysis Group (TAG) has released its quarterly bulletin revealing the termination of thousands of accounts...

StormBamboo APT Targets ISPs to Poison Software Updates with Malware

APT-News

StormBamboo APT Targets ISPs to Poison Software Updates with Malware

A China-linked cyberespionage group known as StormBamboo (also tracked as Evasive Panda, Daggerfly, and Bronze Highland) has...

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

APT-News

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

The XE Group, a cybercrime syndicate with suspected Vietnamese origins, has dramatically evolved its operations from traditional...

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

APT-News

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

A China-linked advanced persistent threat group known as Earth Baxia has been conducting targeted attacks against government...

Posts pagination

1 2 Next

Advanced Persistent Threats

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

PJobRAT Malware Targets Taiwanese Users Through Fake Chat Apps

VanHelsing RaaS Emerges: Double Extortion, Multi-OS Targeting, and $5K Entry Fee

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

Google TAG Q2 2023 Bulletin: State-Sponsored Influence Operations and Spam Networks

Google TAG Q2 2024 Report: State-Linked Influence Operations Targeted Across Platforms

StormBamboo APT Targets ISPs to Poison Software Updates with Malware

XE Group’s Cybercrime Evolution: From Credit Card Skimming to Zero-Day Exploitation

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

You may have missed

Hong Kong Data Breach: 128,000 Records Exposed Due to System Neglect and Outdated Infrastructure

Oracle’s SaaS Breach Cover-Up Exposed: Evidence Contradicts Denials

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

Lucid PhaaS Platform Targets iOS and Android Users via iMessage and RCS