APT Groups

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

APT-News

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

The National Defense Corporation (NDC) has confirmed a ransomware attack targeting its subsidiary AMTEC, a major manufacturer...

Lucid PhaaS Platform Targets iOS and Android Users via iMessage and RCS

APT-News

Lucid PhaaS Platform Targets iOS and Android Users via iMessage and RCS

A sophisticated phishing-as-a-service (PhaaS) platform known as Lucid has been linked to a widespread campaign targeting mobile...

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

APT-News

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

Recent intelligence reports indicate that Russia, China, and North Korea are actively probing UK digital infrastructure with...

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

APT-News

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

Russian drone attacks on Kharkiv, Ukraine’s second-largest city, killed at least two civilians and injured dozens, including...

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

APT-News

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

After a period of inactivity, the Chinese cyber espionage group FamousSparrow has reemerged with upgraded tools and...

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

APT-News

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

Ukrzaliznytsia, Ukraine’s state-owned railway operator, has restored online ticket sales after a sophisticated cyberattack disrupted its systems...

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

APT-News

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

Belgian government portals, including the citizen services platform MyGov.be and the Walloon Parliament website, experienced service disruptions...

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Threat Intelligence

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Generative AI tools like Google’s Gemini are increasingly being weaponized by state-sponsored threat actors, according to recent...

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT-News

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

Russian state-aligned hackers have launched a sophisticated phishing campaign impersonating the U.S. Central Intelligence Agency (CIA) to...

UK Faces “Daily” Hybrid Attacks from Russia, Warns Former Defence Committee Chair

Threat Intelligence

UK Faces “Daily” Hybrid Attacks from Russia, Warns Former Defence Committee Chair

The former Chairman of the UK’s Defence Select Committee, Tobias Ellwood, has issued a stark warning about...

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

APT-News

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

An advanced persistent threat (APT) group linked to Pakistan has been observed impersonating India’s postal service to...

Google TAG Q2 2023 Bulletin: State-Sponsored Influence Operations and Spam Networks

Threat Intelligence

Google TAG Q2 2023 Bulletin: State-Sponsored Influence Operations and Spam Networks

Google’s Threat Analysis Group (TAG) has released its Q2 2023 bulletin, providing critical insights into coordinated influence...

Google TAG Q2 2024 Report: State-Linked Influence Operations Targeted Across Platforms

Threat Intelligence

Google TAG Q2 2024 Report: State-Linked Influence Operations Targeted Across Platforms

Google’s Threat Analysis Group (TAG) has released its quarterly bulletin revealing the termination of thousands of accounts...

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

APT-News

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

A China-linked advanced persistent threat group known as Earth Baxia has been conducting targeted attacks against government...

Earth Estries APT Group’s Long-Term Cyber Espionage Campaign Targeting Global Infrastructure

APT-News

Earth Estries APT Group’s Long-Term Cyber Espionage Campaign Targeting Global Infrastructure

Since 2023, Chinese state-sponsored threat actor Earth Estries (tracked as Salt Typhoon/GhostEmperor/UNC2286) has conducted sophisticated cyber espionage...

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

Threat Intelligence

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

The 2024 MITRE ATT&CK® Evaluations for Enterprise reveal critical insights into ransomware and macOS threats, with vendors...

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

APT-News

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

The advanced persistent threat (APT) group Earth Preta, also known as Mustang Panda, has refined its evasion...

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

APT-News

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

ESET Research has uncovered a series of cyberespionage campaigns conducted by the advanced persistent threat (APT) group...

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

APT-News

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

ESET’s latest APT Activity Report for Q2-Q3 2024 reveals significant developments in state-aligned cyber threats, with China,...

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Exploitation
Threat Intelligence

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

The Nationaal Cyber Security Centrum (NCSC) of the Netherlands has issued a warning regarding a series of cyberattacks...

Posts pagination

1 2 Next

APT Groups

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

Lucid PhaaS Platform Targets iOS and Android Users via iMessage and RCS

Russia, China, and North Korea Targeting UK Economy in Coordinated Cyber Campaign

Russian Drone Strikes on Kharkiv: Escalation in Ukraine Conflict

FamousSparrow APT Resurfaces with Upgraded Cyber Espionage Campaign Targeting Americas

Ukraine’s State Railways Recover From Multilayer Cyberattack: Technical Analysis

Pro-Russian Hacktivists Target Belgian Government Websites in Retaliatory DDoS Campaign

Real-World Adversarial Misuse of Generative AI in Cyber Operations

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

UK Faces “Daily” Hybrid Attacks from Russia, Warns Former Defence Committee Chair

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

Google TAG Q2 2023 Bulletin: State-Sponsored Influence Operations and Spam Networks

Google TAG Q2 2024 Report: State-Linked Influence Operations Targeted Across Platforms

Chinese APT Earth Baxia Targets APAC with GeoServer Exploits and Sophisticated Malware

Earth Estries APT Group’s Long-Term Cyber Espionage Campaign Targeting Global Infrastructure

MITRE ATT&CK 2024 Results: Ransomware & macOS Threats Dominate Enterprise Security

Earth Preta Evades Detection by Blending Legitimate and Malicious Tools

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

You may have missed

Hong Kong Data Breach: 128,000 Records Exposed Due to System Neglect and Outdated Infrastructure

Oracle’s SaaS Breach Cover-Up Exposed: Evidence Contradicts Denials

National Defense Corporation Ransomware Attack: Breach Disclosed, Ransom Refused

Lucid PhaaS Platform Targets iOS and Android Users via iMessage and RCS