Cyber Security Archives • Page 9 of 85 • Daily CyberSecurity

Russian Disinformation Campaign Targets Moldova’s Pro-EU Elections Autumn Dragon Espionage, DLL Sideloading Moldova disinformation AcidPour Wiper Malware

Autumn Dragon Espionage, DLL Sideloading Moldova disinformation AcidPour Wiper Malware

Russian Disinformation Campaign Targets Moldova’s Pro-EU Elections

Do Son September 25, 2025

With Moldova’s nationwide elections approaching on September 28, 2025, researchers at Silent Push have uncovered a Russian-linked...

Cisco Uncovers New PlugX Backdoor Linked to Chinese APTs CVE-2024-41988 & CVE-2024-41987

Cisco Uncovers New PlugX Backdoor Linked to Chinese APTs

Do Son September 24, 2025

Researchers at Cisco Talos have uncovered a long-running espionage campaign active since 2022, targeting the telecommunications and...

Iranian APT “Nimbus Manticore” Intensifies Cyber Espionage in Europe Zyxel security - Mitel MiCollab Vulnerability

Iranian APT “Nimbus Manticore” Intensifies Cyber Espionage in Europe

Do Son September 24, 2025

Check Point Research (CPR) has published new findings on Nimbus Manticore, an Iranian state-aligned APT group overlapping...

Subtle Snail: Iran-Linked Espionage Campaign Targets European Telecom, Aerospace, and Defense Harvester APT Linux Backdoor OT Cyberattack Iranian APT Operation Olalampo MuddyWater APT Prince of Persia APT, Tonnerre v50 Patchwork APT, DLL Sideloading Subtle Snail, cyber espionage ShadowSilk, cyber espionage Volt Typhoon APT Group - Chinese Cybersecurity Firm

Harvester APT Linux Backdoor OT Cyberattack Iranian APT Operation Olalampo MuddyWater APT Prince of Persia APT, Tonnerre v50 Patchwork APT, DLL Sideloading Subtle Snail, cyber espionage ShadowSilk, cyber espionage Volt Typhoon APT Group - Chinese Cybersecurity Firm

Subtle Snail: Iran-Linked Espionage Campaign Targets European Telecom, Aerospace, and Defense

Do Son September 23, 2025

A new study from Catalyst has exposed a sophisticated cyber espionage campaign conducted by Subtle Snail (UNC1549),...

CopyCop Expands Its Disinformation Network With AI-Generated Content and Global Targets CopyCop Russian disinformation

CopyCop Expands Its Disinformation Network With AI-Generated Content and Global Targets

Do Son September 22, 2025

A new report from Insikt Group reveals that CopyCop, also known as Storm-1516, is rapidly expanding its...

MuddyWater APT Shifts Tactics to Custom Malware MuddyWater APT ANY.RUN security incident

MuddyWater APT Shifts Tactics to Custom Malware

Do Son September 19, 2025

Group-IB analysts have released new intelligence on MuddyWater, the Iranian state-sponsored APT linked to Tehran’s Ministry of...

Hacktivists Launch Coordinated Attacks on India’s Infrastructure hacktivist attacks

Hacktivists Launch Coordinated Attacks on India’s Infrastructure

Do Son September 18, 2025

India’s digital infrastructure has become a high-value battleground for hacktivists. A new analysis from CYFIRMA highlights how...

The Silent Spy: How Chinese Hackers are Exploiting U.S.-China Policy Chinese espionage groups APT35 Phishing, Stormshield CTI

The Silent Spy: How Chinese Hackers are Exploiting U.S.-China Policy

Do Son September 18, 2025

State-aligned Chinese threat actor TA415 (also tracked as APT41, Brass Typhoon, Wicked Panda) has launched a series...

APT28’s BeardShell Campaign: Steganography, Cloud Abuse, and Persistent Espionage Labkotec LID-3300IP CVE-2026-1775 ASUSTOR ADM Vulnerability CVE-2026-3179 Russian Cyberattacks - Security Operations Center

Labkotec LID-3300IP CVE-2026-1775 ASUSTOR ADM Vulnerability CVE-2026-3179 Russian Cyberattacks - Security Operations Center

APT28’s BeardShell Campaign: Steganography, Cloud Abuse, and Persistent Espionage

Do Son September 17, 2025

The Russian-linked threat actor APT28, also known as Sofacy, Fancy Bear, Forest Blizzard, and TAG-110, has unveiled...

Kimsuky Group Weaponizes AI Deepfakes in New Spear-Phishing Campaign North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Kimsuky Group Weaponizes AI Deepfakes in New Spear-Phishing Campaign

Do Son September 16, 2025

The Genians Security Center (GSC) has uncovered a new spear-phishing campaign by the North Korean threat group...

FBI Alert: Two Cybercriminal Groups Are Actively Compromising Salesforce TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

FBI Alert: Two Cybercriminal Groups Are Actively Compromising Salesforce

Do Son September 15, 2025

The Federal Bureau of Investigation (FBI), in coordination with DHS/CISA, has released a new FLASH Alert (FLASH-20250912-001)...

China-Aligned Hackers Unleash Upgraded Toneshell and New USB Worm China-aligned actor, Hive0154

China-Aligned Hackers Unleash Upgraded Toneshell and New USB Worm

Do Son September 15, 2025

IBM X-Force has published new findings on Hive0154, a China-aligned threat actor also tracked under names such...

EggStreme: New Fileless Malware from a Chinese APT Targets Philippine Military Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

EggStreme: New Fileless Malware from a Chinese APT Targets Philippine Military

Do Son September 12, 2025

Bitdefender Threat researchers have detailed a new and highly sophisticated fileless malware framework named EggStreme, used by...

ToneShell Backdoor Evolves With Anti-Analysis Tricks, Continues Targeting Myanmar ToneShell, Mustang Panda

ToneShell Backdoor Evolves With Anti-Analysis Tricks, Continues Targeting Myanmar

Do Son September 12, 2025

Intezer researchers have released a technical analysis of a new variant of ToneShell, a lightweight backdoor tied...

Lazarus Group Is Exploiting CVE-2025-48384 in New Phishing Campaign Lazarus Group, phishing campaign

Lazarus Group Is Exploiting CVE-2025-48384 in New Phishing Campaign

Do Son September 10, 2025

KuCoin’s security team has identified fresh phishing campaigns orchestrated by the Lazarus Group (APT38), a North Korean...

Unmasking Salt Typhoon: A Report Exposes 45 New Domains from a Chinese APT Group TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

Unmasking Salt Typhoon: A Report Exposes 45 New Domains from a Chinese APT Group

Do Son September 9, 2025

Threat analysts at Silent Push have identified dozens of previously unreported domains tied to Salt Typhoon, a...

Noisy Bear: A New APT Group Is Spying on Kazakhstan’s Energy Sector Noisy Bear, cyber espionage

Noisy Bear: A New APT Group Is Spying on Kazakhstan’s Energy Sector

Do Son September 8, 2025

The Seqrite Labs APT-Team has released an in-depth analysis of a newly discovered threat actor dubbed Noisy...

Kimsuky APT Is Using Social Engineering and AppleSeed Malware to Spy on South Korea Exploited VMware

Kimsuky APT Is Using Social Engineering and AppleSeed Malware to Spy on South Korea

Do Son September 5, 2025

The Genians Security Center (GSC) has published a detailed analysis of a new Advanced Persistent Threat (APT)...

Lazarus Subgroup Deploys Three Custom RATs in Targeted Crypto Attacks axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

Lazarus Subgroup Deploys Three Custom RATs in Targeted Crypto Attacks

Do Son September 2, 2025

Fox-IT and NCC Group have released a detailed joint analysis exposing how a Lazarus Group subgroup continues...

Operation HanKook Phantom: APT-37 Targets South Korean Institutions with LNK-Based Espionage Campaign North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Operation HanKook Phantom: APT-37 Targets South Korean Institutions with LNK-Based Espionage Campaign

Do Son September 2, 2025

Researchers at Seqrite Lab have uncovered a new spear-phishing operation attributed to APT-37 (ScarCruft / InkySquid /...

Critical Alert 1 Active Exploit Detected Today