Critical Alert 1 Active Exploit Detected Today

CVE-2026-9082 — Drupal Core SQL Injection Vulnerability →

Powered by CVE Watchtower

×

threat actor

LockBit 5.0 Ransomware: Cross-Platform Evolution Targets Windows, Linux, and ESXi LockBit 5.0, Cross-Platform Ransomware

LockBit 5.0, Cross-Platform Ransomware

LockBit 5.0 Ransomware: Cross-Platform Evolution Targets Windows, Linux, and ESXi

Ddos September 27, 2025

APT28’s BeardShell Campaign: Steganography, Cloud Abuse, and Persistent Espionage Labkotec LID-3300IP CVE-2026-1775 ASUSTOR ADM Vulnerability CVE-2026-3179 Russian Cyberattacks - Security Operations Center

Labkotec LID-3300IP CVE-2026-1775 ASUSTOR ADM Vulnerability CVE-2026-3179 Russian Cyberattacks - Security Operations Center

APT28’s BeardShell Campaign: Steganography, Cloud Abuse, and Persistent Espionage

Ddos September 17, 2025

From CastleLoader to CastleRAT: TAG-150’s Multi-Tiered Cyber Arsenal Expands AccountDumpling Phishing Google AppSheet Abuse AI-Generated Malware PureRAT Campaign RondoDoX Botnet, Next.js React2Shell EchoGather, Paper Werewolf Salt Typhoon, Telecom Espionage BreachForums, Conor Fitzpatrick Ransomware Negotiation, DOJ Investigation MirrorFace group - Earth Kasha Emperor Dragonfly

AccountDumpling Phishing Google AppSheet Abuse AI-Generated Malware PureRAT Campaign RondoDoX Botnet, Next.js React2Shell EchoGather, Paper Werewolf Salt Typhoon, Telecom Espionage BreachForums, Conor Fitzpatrick Ransomware Negotiation, DOJ Investigation MirrorFace group - Earth Kasha Emperor Dragonfly

From CastleLoader to CastleRAT: TAG-150’s Multi-Tiered Cyber Arsenal Expands

Ddos September 9, 2025

UAC-0057 Targets Ukraine and Poland with Weaponized Archives and Evolving Implants BlueNoroff macOS Attack GhostCall Campaign Carding Underground Bulletproof Hosting DPRK Contagious Interview, npm Flood Stonefly group -HiatusRAT Actors

BlueNoroff macOS Attack GhostCall Campaign Carding Underground Bulletproof Hosting DPRK Contagious Interview, npm Flood Stonefly group -HiatusRAT Actors

UAC-0057 Targets Ukraine and Poland with Weaponized Archives and Evolving Implants

Ddos August 22, 2025

LockBit Ransomware Evolves: New Stealthy Tactics Use DLL Sideloading & Masquerading to Bypass Defenses LockBit Ransomware, DLL Sideloading

LockBit Ransomware, DLL Sideloading

LockBit Ransomware Evolves: New Stealthy Tactics Use DLL Sideloading & Masquerading to Bypass Defenses

Ddos August 1, 2025

GOLD BLADE Unleashes RedLoader with Novel Attack Chain: LNK Files + WebDAV + DLL Sideloading Evades Detection RedLoader, DLL Sideloading

RedLoader, DLL Sideloading

GOLD BLADE Unleashes RedLoader with Novel Attack Chain: LNK Files + WebDAV + DLL Sideloading Evades Detection

Ddos July 31, 2025

BlackSuit: New Royal/Conti Rebrand Hits With Speed, Stealth, & Data Exfiltration

blacksuit

BlackSuit: New Royal/Conti Rebrand Hits With Speed, Stealth, & Data Exfiltration

Ddos July 15, 2025

New BERT Ransomware Unleashed: Multi-Threaded Attacks Hit Windows, Linux & ESXi with REvil Links ramsomware

ramsomware

New BERT Ransomware Unleashed: Multi-Threaded Attacks Hit Windows, Linux & ESXi with REvil Links

Ddos July 8, 2025

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations Linux Proxy Malware, Legitimate Tool Abuse

Linux Proxy Malware, Legitimate Tool Abuse

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations

Ddos July 3, 2025

Microsoft 365 “Direct Send” Abused: Phishing Campaign Spoofs Internal Users, Bypasses Security phish

phish

Microsoft 365 “Direct Send” Abused: Phishing Campaign Spoofs Internal Users, Bypasses Security

Ddos June 28, 2025

African Financial Institutions Targeted: “CL-CRI-1014” IAB Uses Open-Source Tools & Forged Signatures for Covert Access tool-chain

tool-chain

African Financial Institutions Targeted: “CL-CRI-1014” IAB Uses Open-Source Tools & Forged Signatures for Covert Access

Ddos June 26, 2025

Tor Meets Docker: Sophisticated Crypto-Mining Campaign Hijacks Misconfigured APIs Docker

Docker

Tor Meets Docker: Sophisticated Crypto-Mining Campaign Hijacks Misconfigured APIs

Ddos June 19, 2025

Water Curse: GitHub Supply Chain Attack Spreads Malware via Fake Tools, Targets Devs & Gamers GitHub

GitHub

Water Curse: GitHub Supply Chain Attack Spreads Malware via Fake Tools, Targets Devs & Gamers

Ddos June 17, 2025

Sophos Unmasks Sakura RAT: Hackers Hacking Hackers with Backdoored Malware! Sakura RAT, Hacker Malware

Sakura RAT, Hacker Malware

Sophos Unmasks Sakura RAT: Hackers Hacking Hackers with Backdoored Malware!

Ddos June 5, 2025

Gh0st in the Machine: ASEC Uncovers Cryptomining Campaign Exploiting Korean Internet Cafés Gh0st RAT, CoinMiner

Gh0st RAT, CoinMiner

Gh0st in the Machine: ASEC Uncovers Cryptomining Campaign Exploiting Korean Internet Cafés

Ddos June 3, 2025

Russian GRU’s APT28 Targets Global Logistics Supporting Ukraine Defense APT28 cyber-espionage, GRU cyberattack

APT28 cyber-espionage, GRU cyberattack

Russian GRU’s APT28 Targets Global Logistics Supporting Ukraine Defense

Ddos May 21, 2025

Hazy Hawk: Stealthy Threat Actor Hijacks High-Profile Subdomains

Hazy Hawk, CNAME hijacking

Hazy Hawk: Stealthy Threat Actor Hijacks High-Profile Subdomains

Ddos May 21, 2025

TA406 Cyber Campaign: North Korea’s Focus on Ukraine Intelligence camp

camp

TA406 Cyber Campaign: North Korea’s Focus on Ukraine Intelligence

Ddos May 14, 2025

Swan Vector Espionage Targets Japan & Taiwan with Advanced Malware Swan

Swan

Swan Vector Espionage Targets Japan & Taiwan with Advanced Malware

Ddos May 14, 2025

Agenda Ransomware Evolves with NETXLOADER and SmokeLoader in Global Campaigns Agenda ransomware, NETXLOADER

Agenda ransomware, NETXLOADER

Agenda Ransomware Evolves with NETXLOADER and SmokeLoader in Global Campaigns

Ddos May 8, 2025