Cybercriminals Archives • Page 20 of 34 • Daily CyberSecurity

Beyond Email: Why Your Microsoft Teams Chat Is Now a Phishing Danger Zone Teams phishing, Teams security

Beyond Email: Why Your Microsoft Teams Chat Is Now a Phishing Danger Zone

Do Son August 29, 2025

Security researchers at Hunters have published a new analysis revealing how attackers are increasingly abusing Microsoft Teams...

ShadowSilk Unmasked: The Hybrid Espionage Group Targeting Central Asian Governments Harvester APT Linux Backdoor OT Cyberattack Iranian APT Operation Olalampo MuddyWater APT Prince of Persia APT, Tonnerre v50 Patchwork APT, DLL Sideloading Subtle Snail, cyber espionage ShadowSilk, cyber espionage Volt Typhoon APT Group - Chinese Cybersecurity Firm

Harvester APT Linux Backdoor OT Cyberattack Iranian APT Operation Olalampo MuddyWater APT Prince of Persia APT, Tonnerre v50 Patchwork APT, DLL Sideloading Subtle Snail, cyber espionage ShadowSilk, cyber espionage Volt Typhoon APT Group - Chinese Cybersecurity Firm

ShadowSilk Unmasked: The Hybrid Espionage Group Targeting Central Asian Governments

Do Son August 29, 2025

Group-IB analysts, in cooperation with CERT-KG, have published new research exposing the activities of a threat cluster...

OFAC Sanctions North Korean IT Worker Network Funding Weapons Programs North Korea malware North Korea, OFAC sanctions DPRK AI hiring, Wagemole campaigns

North Korea malware North Korea, OFAC sanctions DPRK AI hiring, Wagemole campaigns

OFAC Sanctions North Korean IT Worker Network Funding Weapons Programs

Do Son August 28, 2025

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) has sanctioned multiple individuals and...

Festival of Fraud: How Scammers Exploit Ganesh Chaturthi for Cybercrime Ganesh Chaturthi, festival scams

Festival of Fraud: How Scammers Exploit Ganesh Chaturthi for Cybercrime

Do Son August 28, 2025

As India gears up for Ganesh Chaturthi, one of its most celebrated festivals, cybercriminals are also preparing—not...

Infrawatch Uncovers Belarusian-Run Residential Proxy Network Inside U.S. Homes Residential proxies, DSLRoot

Infrawatch Uncovers Belarusian-Run Residential Proxy Network Inside U.S. Homes

Do Son August 28, 2025

A new investigation by Infrawatch, in collaboration with KrebsOnSecurity, has revealed that a Belarusian national is covertly...

A Deceptive App Is Stealing Data from Indonesian Civil Servants and Retirees TASPEN, mobile malware North Korean IT Worker Fraud

A Deceptive App Is Stealing Data from Indonesian Civil Servants and Retirees

Do Son August 28, 2025

CloudSEK researchers have identified a highly targeted and dangerous mobile malware campaign in Indonesia, designed to steal...

Data Theft Alert: Salesforce Instances Breached via Third-Party App OAuth Tokens Salesforce data theft

Data Theft Alert: Salesforce Instances Breached via Third-Party App OAuth Tokens

Do Son August 28, 2025

The Google Threat Intelligence Group (GTIG) has issued an urgent advisory on a widespread data theft campaign...

A Silent Threat: How a Stealthy Campaign Is Stealing ScreenConnect Credentials for Ransomware ScreenConnect, credential harvesting

A Silent Threat: How a Stealthy Campaign Is Stealing ScreenConnect Credentials for Ransomware

Do Son August 28, 2025

The Mimecast Threat Research team, led by Samantha Clarke, has exposed an ongoing credential harvesting campaign (designated...

The Reversed Phishing Attack: New Campaign Triggers Victims to Call Hackers NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

The Reversed Phishing Attack: New Campaign Triggers Victims to Call Hackers

Do Son August 28, 2025

Check Point Research (CPR) has exposed a new phishing campaign dubbed ZipLine, which flips the traditional social...

Nx Build System Compromise Targets Developers with AI-Enhanced Supply Chain Attack Nx supply chain attack

Nx Build System Compromise Targets Developers with AI-Enhanced Supply Chain Attack

Do Son August 27, 2025

The StepSecurity research team has issued a warning about a large-scale supply chain attack involving the popular...

Cephalus: The New Ransomware That Abuses Legitimate Tools to Bypass Security

Do Son August 27, 2025

Recently, threat hunters at Huntress observed two separate incidents involving a new ransomware variant dubbed Cephalus. The...

The Underground Ransomware Gang Is Back with a Vicious New Global Campaign

Do Son August 27, 2025

The Underground ransomware gang is intensifying its operations, launching continuous ransomware attacks against companies worldwide, including high-profile...

A Storm Is Coming: A Massive Coordinated Attack Is Probing RDP Connections RDP scanning, Remote Desktop Protocol

A Storm Is Coming: A Massive Coordinated Attack Is Probing RDP Connections

Do Son August 26, 2025

Security intelligence firm GreyNoise has sounded the alarm over a massive spike in Microsoft Remote Desktop (RDP)...

Ransomware in Your Summary? New Attack Weaponizes AI Assistants sumary

Ransomware in Your Summary? New Attack Weaponizes AI Assistants

Do Son August 26, 2025

A new CloudSEK report has revealed a dangerous evolution in social engineering: the use of invisible prompt...

Beyond Windows: Pakistan’s APT36 Group Is Now Attacking Linux Systems with Stealthy Malware AccountDumpling Phishing Google AppSheet Abuse AI-Generated Malware PureRAT Campaign RondoDoX Botnet, Next.js React2Shell EchoGather, Paper Werewolf Salt Typhoon, Telecom Espionage BreachForums, Conor Fitzpatrick Ransomware Negotiation, DOJ Investigation MirrorFace group - Earth Kasha Emperor Dragonfly

AccountDumpling Phishing Google AppSheet Abuse AI-Generated Malware PureRAT Campaign RondoDoX Botnet, Next.js React2Shell EchoGather, Paper Werewolf Salt Typhoon, Telecom Espionage BreachForums, Conor Fitzpatrick Ransomware Negotiation, DOJ Investigation MirrorFace group - Earth Kasha Emperor Dragonfly

Beyond Windows: Pakistan’s APT36 Group Is Now Attacking Linux Systems with Stealthy Malware

Do Son August 26, 2025

The Pakistan-linked threat group APT36—also known as Transparent Tribe, Mythic Leopard, Earth Karkaddan, or Operation C-Major—has re-emerged...

Spur Links North Korean APT Infrastructure to Commercial Proxy Service WgetCloud

Do Son August 26, 2025

Last week, the leak site DDoSecrets.com published a data dump allegedly from a workstation of a threat...

Explosive ATM Attacks: Europol-Led Operation Dismantles Dutch-German Criminal Ring ATM attacks, Europol

Explosive ATM Attacks: Europol-Led Operation Dismantles Dutch-German Criminal Ring

Do Son August 25, 2025

In a coordinated international operation, law enforcement authorities from Austria, Germany, and the Netherlands, with support from...

Ex-Programmer Davis Lu Jailed for Triggering Malicious “Kill Switch” at Eaton Davis Lu, Kill Switch

Ex-Programmer Davis Lu Jailed for Triggering Malicious “Kill Switch” at Eaton

Do Son August 25, 2025

In March 2025, 55-year-old programmer Davis Lu had triggered a “kill switch” to delete company data. He...

Beyond the Breach: Coinbase Cracks Down on Remote Work to Stop Hackers North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack