Threat Actors Archives • Daily CyberSecurity

Pandora’s Box: IBM X-Force Uncovers Likely AI-Generated “Slopoly” Malware Weaponizable AI AI Cyber Threats

Pandora’s Box: IBM X-Force Uncovers Likely AI-Generated “Slopoly” Malware

Do Son March 18, 2026

Cybersecurity investigators at IBM X-Force have identified a disturbing new milestone in the evolution of digital threats:...

FileFix: A New Attack Hides Malware in Plain Sight FBI email system hack

FileFix: A New Attack Hides Malware in Plain Sight

Do Son September 18, 2025

Researchers from Acronis’ Threat Research Unit (TRU) have uncovered a rare in-the-wild FileFix campaign, marking the first...

A New Threat: Unmasking Crypto24 Ransomware’s Stealthy Toolkit INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

A New Threat: Unmasking Crypto24 Ransomware’s Stealthy Toolkit

Do Son August 15, 2025

Trend Micro’s latest research sheds light on Crypto24, a highly coordinated ransomware operation that blends legitimate administrative...

Matanbuchus 3.0 Levels Up: New Stealthy Malware Loader Exploits Microsoft Teams ahost.exe DLL Sideloading Signed Application Abuse PS1Bot, malware ransomware attacks bill

ahost.exe DLL Sideloading Signed Application Abuse PS1Bot, malware ransomware attacks bill

Matanbuchus 3.0 Levels Up: New Stealthy Malware Loader Exploits Microsoft Teams

Do Son July 21, 2025

Matanbuchus, a well-known malware loader sold as Malware-as-a-Service (MaaS), has just leveled up. In its latest evolution—Matanbuchus...

Cyber Giants Unite: Microsoft, Google, & Others Push for Unified Hacker Group Naming Threat Actor Naming, Cyber Threat Intelligence

Cyber Giants Unite: Microsoft, Google, & Others Push for Unified Hacker Group Naming

Do Son June 3, 2025

In light of the longstanding confusion caused by differing nomenclature used by nations and organizations to describe...

DieNet Hacktivist Group Exploits DDoS-as-a-Service in Rapid Attacks DDoS-as-a-service DieNet

DieNet Hacktivist Group Exploits DDoS-as-a-Service in Rapid Attacks

Do Son May 9, 2025

In a newly published report by NETSCOUT, a new hacktivist group known as DieNet has surfaced, claiming...

DragonForce Ransomware Cartel Hits UK Retailers with Custom Payloads and Global Extortion Campaign DragonForce, Ransomware

DragonForce Ransomware Cartel Hits UK Retailers with Custom Payloads and Global Extortion Campaign

Do Son May 6, 2025

A disturbing evolution in the ransomware ecosystem has been exposed by cybersecurity firm SentinelOne, which has published...

Sophisticated Attacks Employ Cobalt Strike, DLL Sideloading, and Evolving Tactics

Do Son May 1, 2025

In a sophisticated campaign that spanned multiple regions and techniques, Sophos researchers uncovered a cluster of targeted...

Billbug Group Targets Southeast Asia in Sophisticated Espionage Campaign Billbug Espionage campaign

Billbug Group Targets Southeast Asia in Sophisticated Espionage Campaign

Do Son April 21, 2025

A recent report by Symantec’s Threat Hunter Team has uncovered an extensive espionage campaign orchestrated by the...

State-Sponsored Actors Adopt ClickFix Technique in Cyber Espionage ClickFix State-sponsored actors

State-Sponsored Actors Adopt ClickFix Technique in Cyber Espionage

Do Son April 21, 2025

In a recent cybersecurity report by Proofpoint researchers, a notable trend has emerged: state-sponsored actors are increasingly...

Precision-Validated Phishing: A New Era of Targeted Credential Theft Precision-Validated Phishing Credential Theft

Precision-Validated Phishing: A New Era of Targeted Credential Theft

Do Son April 12, 2025

A recent report by Cofense Intelligence reveals a game-changing phishing technique called Precision-Validated Phishing—a surgical approach to...

Threat Actors Continue to Exploit Legitimate RMM Tool ScreenConnect KongTuke Microsoft Teams Phishing ModeloRAT Initial Access Broker CVE-2024-38193 - Lazarus Group Threat Actors ScreenConnect

KongTuke Microsoft Teams Phishing ModeloRAT Initial Access Broker CVE-2024-38193 - Lazarus Group Threat Actors ScreenConnect

Threat Actors Continue to Exploit Legitimate RMM Tool ScreenConnect

Do Son February 6, 2025

A recent report from Silent Push reveals that threat actors are still leveraging ScreenConnect, a legitimate remote...

Critical Alert 1 Active Exploit Detected Today