Cybercriminals Archives • Page 4 of 34 • Daily CyberSecurity

Checkmarx Falls Victim to Credential Harvesting Attack

Check Point VPN vulnerability exploited in the wild Check Point VPN exploit CVE-2026-50751 zero-day Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

Checkmarx Falls Victim to Credential Harvesting Attack

Do Son April 29, 2026

Checkmarx, a global leader in application security testing, has disclosed a significant breach of its internal systems....

Inside BlueNoroff’s “Self-Reinforcing” Deepfake Meeting Trap BlueNoroff Deepfakes Crypto Deepfake Phishing

Inside BlueNoroff’s “Self-Reinforcing” Deepfake Meeting Trap

Do Son April 28, 2026

Cybersecurity researchers at Arctic Wolf have uncovered a sophisticated, globally distributed campaign by the North Korean state-sponsored...

The .gov Illusion: Inside the 16,800-Domain “Operation Trust Trap” Campaign Operation Trust Trap Subdomain Trust Injection

The .gov Illusion: Inside the 16,800-Domain “Operation Trust Trap” Campaign

Do Son April 28, 2026

Cyble Research and Intelligence Labs (CRIL) has uncovered a massive coordinated infrastructure consisting of over 16,800 malicious...

From Shanghai to Houston: The HAFNIUM Hacker Who Stole Vaccine Secrets Faces Justice UNC5221 HAFNIUM Extradition PRC State Espionage

From Shanghai to Houston: The HAFNIUM Hacker Who Stole Vaccine Secrets Faces Justice

Do Son April 28, 2026

This past weekend, Xu Zewei (徐泽伟), a 34-year-old national of the People’s Republic of China (PRC), was...

Inside “HexagonalRodent”: The AI-Powered DPRK Syndicate Hauling Millions in Crypto HexagonalRodent Malware Web3 Developer Scams

Inside “HexagonalRodent”: The AI-Powered DPRK Syndicate Hauling Millions in Crypto

Do Son April 27, 2026

The digital asset landscape is under siege by a highly active, North Korean-linked threat group that has...

Tactical Evolution: Trigona Ransomware Debuts Custom Exfiltration Armory Trigona Ransomware Custom Exfiltration Tool

Tactical Evolution: Trigona Ransomware Debuts Custom Exfiltration Armory

Do Son April 25, 2026

The ransomware landscape is witnessing a sophisticated shift in how data is stolen. While most cybercriminal groups...

The Global Surge in Modbus/TCP Probes Targeting Our Physical World Modbus Exploitation ICS Security

The Global Surge in Modbus/TCP Probes Targeting Our Physical World

Do Son April 24, 2026

Between September and November 2025, a massive wave of suspicious activity targeted industrial control systems worldwide, proving...

Inside the Rise of Dabai Guarantee and the Telegram “Sweeping” Economy Dabai Guarantee Ghost-Tapping Fraud

Inside the Rise of Dabai Guarantee and the Telegram “Sweeping” Economy

Do Son April 24, 2026

Following the high-profile shutdown of Huione Guarantee in 2025, a new powerhouse has emerged to facilitate global...

AI in the Driver’s Seat: How the ‘Bissa’ Scanner Hijacked 900+ Firms in Weeks AI-Assisted Exploitation Bissa Scanner

AI in the Driver’s Seat: How the ‘Bissa’ Scanner Hijacked 900+ Firms in Weeks

Do Son April 24, 2026

Researchers from The DFIR Report recently discovered an exposed command-and-control server that provided a rare look into...

Tropic Trooper Weaponizes GitHub and VS Code for East Asian Espionage Tropic Trooper Espionage VS Code Tunnels

Tropic Trooper Weaponizes GitHub and VS Code for East Asian Espionage

Do Son April 24, 2026

A sophisticated cyber espionage campaign has been uncovered targeting individuals across East Asia, leveraging a deceptive mix...

The Lotus Evolves: Mustang Panda Targets Indian Banks in a New Espionage Pivot Mustang Panda LOTUSLITE Financial Cyber-Espionage

The Lotus Evolves: Mustang Panda Targets Indian Banks in a New Espionage Pivot

Do Son April 23, 2026

The Acronis Threat Research Unit (TRU) has identified a significant shift in the operations of Mustang Panda,...

Microsoft Teams Exploited for Silent Enterprise Takeovers Teams Impersonation Administrative Abuse

Microsoft Teams Exploited for Silent Enterprise Takeovers

Do Son April 22, 2026

A new investigative report from the Microsoft Defender Security Research Team has unmasked a sophisticated intrusion chain...

The Negotiator Turned Traitor: Insider Betrayal in the BlackCat Ransomware Ring NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

The Negotiator Turned Traitor: Insider Betrayal in the BlackCat Ransomware Ring

Do Son April 21, 2026

A Florida man has admitted to playing both sides of the ransomware fence. Angelo Martino, 41, a...

Scotland Man Pleads Guilty in Massive $8 Million Crypto-Heist and Phishing Campaign Seedworm Espionage Campaign 2026 ChromElevator Stealer DLL Sideloading SIM Swapping Crypto Theft Lazarus Comebacker, Aerospace Espionage Delete PlugX Malware

Seedworm Espionage Campaign 2026 ChromElevator Stealer DLL Sideloading SIM Swapping Crypto Theft Lazarus Comebacker, Aerospace Espionage Delete PlugX Malware

Scotland Man Pleads Guilty in Massive $8 Million Crypto-Heist and Phishing Campaign

Do Son April 21, 2026

A 24-year-old Dundee man has admitted his role in a sophisticated international cybercrime ring that utilized SMS...

Cyber-Actors are “Laundering Trust” to Hijack the Global Supply Chain Load Board Phishing Signing-as-a-Service

Cyber-Actors are “Laundering Trust” to Hijack the Global Supply Chain

Do Son April 20, 2026

Proofpoint researchers have detailed the curtain on a sophisticated cyber-operation targeting the transportation industry, revealing a month-long...

One Scan to Zero: The QR Code Trap Wiping Trust Wallets via Telegram Trust Wallet Drainer QR Code Phishing

One Scan to Zero: The QR Code Trap Wiping Trust Wallets via Telegram

Do Son April 20, 2026

A sophisticated and highly effective cryptocurrency theft campaign is currently sweeping through Telegram channels, turning a simple...

North Korea’s UNC1069 Uses Fake Video Calls to Hijack Crypto UNC1069 Fake Meetings ClickFix Malware

North Korea’s UNC1069 Uses Fake Video Calls to Hijack Crypto

Do Son April 19, 2026

In a sophisticated escalation of cyber-enabled financial theft, security researchers from Validin have unmasked a sprawling campaign...

Triad Nexus’ $300M “Infrastructure Laundering” Machine Exposed Infrastructure Laundering Triad Nexus

Triad Nexus’ $300M “Infrastructure Laundering” Machine Exposed

Do Son April 17, 2026

The threat group known as Triad Nexus has successfully bypassed international sanctions to reinstate a global fraud...

The “Laptop Farm” Fallout: Two NJ Men Sentenced for Facilitating $5M North Korean Work Scheme Laptop Farm North Korean IT Fraud

The “Laptop Farm” Fallout: Two NJ Men Sentenced for Facilitating $5M North Korean Work Scheme

Do Son April 17, 2026

In what federal prosecutors are calling a sophisticated strike against national security, two New Jersey residents have...

The $9.5 Million Blind Spot: How a Fake Ledger App Evaded Apple’s Vetting to Empty User Wallets Fake Ledger Live App

The $9.5 Million Blind Spot: How a Fake Ledger App Evaded Apple’s Vetting to Empty User Wallets

Do Son April 16, 2026

The imprimatur of the Apple App Store does not confer an absolute guarantee of integrity. Between April...

Critical Alert