Symantec Archives • Daily CyberSecurity

Cyber Espionage Campaign Targets Global Stock Exchange Executive AdaptixC2 Abuse, Russian Cybercrime RondoDox Botnet, Exploit Shotgun China Cyber Power, Red Hackers Nvidia cyberattack

AdaptixC2 Abuse, Russian Cybercrime RondoDox Botnet, Exploit Shotgun China Cyber Power, Red Hackers Nvidia cyberattack

Cyber Espionage Campaign Targets Global Stock Exchange Executive

Do Son June 8, 2026

Severe Infrastructure Exposure Discovered An unknown threat actor recently executed a highly disciplined cyber operation against a...

Harvester APT Goes Cross-Platform: New Linux Backdoor Abuses Microsoft Graph API Harvester APT Linux Backdoor OT Cyberattack Iranian APT Operation Olalampo MuddyWater APT Prince of Persia APT, Tonnerre v50 Patchwork APT, DLL Sideloading Subtle Snail, cyber espionage ShadowSilk, cyber espionage Volt Typhoon APT Group - Chinese Cybersecurity Firm

Harvester APT Linux Backdoor OT Cyberattack Iranian APT Operation Olalampo MuddyWater APT Prince of Persia APT, Tonnerre v50 Patchwork APT, DLL Sideloading Subtle Snail, cyber espionage ShadowSilk, cyber espionage Volt Typhoon APT Group - Chinese Cybersecurity Firm

Harvester APT Goes Cross-Platform: New Linux Backdoor Abuses Microsoft Graph API

Do Son April 24, 2026

The sophisticated threat actor known as Harvester is expanding its horizons. Traditionally known for targeting Windows environments,...

‘Speagle’ Malware Hijacks Security Software to Steal Missile Secrets TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

‘Speagle’ Malware Hijacks Security Software to Steal Missile Secrets

Do Son March 23, 2026

In a sophisticated display of “parasitic” engineering, a mysterious new threat has been discovered living within the...

Silent Killer: Black Basta Bundles “BYOVD” Driver to Blind Antivirus INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

Silent Killer: Black Basta Bundles “BYOVD” Driver to Blind Antivirus

Do Son February 10, 2026

The notorious Black Basta ransomware group has upgraded its arsenal with a dangerous new capability, embedding defense...

“Osiris” Rises: New Ransomware Targets Southeast Asian Food Giant with Advanced Tactics Osiris Ransomware Inc Ransomware Connection CountLoader Massive Ransomware Campaign CVE-2025-0289

Osiris Ransomware Inc Ransomware Connection CountLoader Massive Ransomware Campaign CVE-2025-0289

“Osiris” Rises: New Ransomware Targets Southeast Asian Food Giant with Advanced Tactics

Do Son January 26, 2026

A new ransomware family, borrowing the name of the ancient Egyptian god of the dead, has emerged...

LockBit Ransomware Evolves: New Stealthy Tactics Use DLL Sideloading & Masquerading to Bypass Defenses LockBit Ransomware, DLL Sideloading

LockBit Ransomware Evolves: New Stealthy Tactics Use DLL Sideloading & Masquerading to Bypass Defenses

Do Son August 1, 2025

LockBit isn’t just another ransomware group—it’s an evolving threat that continues to adapt its tactics to evade...

Symantec Endpoint Management Alert: Critical Flaw Allows Unauthenticated RCE, PoC Releases Symantec Endpoint Management, Remote Code Execution

Symantec Endpoint Management, Remote Code Execution

Symantec Endpoint Management Alert: Critical Flaw Allows Unauthenticated RCE, PoC Releases

Do Son July 14, 2025

A critical remote code execution (RCE) vulnerability has been discovered in the Symantec Endpoint Management suite, also...

Ransomware or Espionage? Fog Ransomware Attack in Asia Raises Suspicion with Rare Toolset Fog Ransomware, Espionage

Ransomware or Espionage? Fog Ransomware Attack in Asia Raises Suspicion with Rare Toolset

Do Son June 14, 2025

In May 2025, a financial institution in Asia was targeted in a highly anomalous ransomware attack that...

Popular Chrome Extensions Caught Leaking Sensitive User Data via Unencrypted HTTP

Do Son June 7, 2025

A new report by Symantec Threat Hunter Team uncovers that several widely-used Chrome extensions—some with millions of...

Chrome Extension Security Alert: Hidden API Keys Expose 21M+ Users to Risk!

Do Son June 5, 2025

In a wide-reaching security investigation, Symantec has uncovered a troubling trend in the Chrome Web Store: hardcoded...

Billbug Group Targets Southeast Asia in Sophisticated Espionage Campaign Billbug Espionage campaign

Billbug Group Targets Southeast Asia in Sophisticated Espionage Campaign

Do Son April 21, 2025

A recent report by Symantec’s Threat Hunter Team has uncovered an extensive espionage campaign orchestrated by the...

Apple to distrust Symantec certificate authorities National Rifle Association

Apple to distrust Symantec certificate authorities

Do Son June 8, 2018

This summer, Apple will gradually begin to no longer trust the Symantec CA, and will initially cease...

Critical Alert 1 Active Exploit Detected Today