threat intelligence Archives • Page 10 of 12 • Daily CyberSecurity

APT37 Escalates Cyber-Espionage on South Korea: New RoKRAT Backdoor Uses Stealthy LNK Files & Steganography APT37, RoKRAT Malware

APT37 Escalates Cyber-Espionage on South Korea: New RoKRAT Backdoor Uses Stealthy LNK Files & Steganography

Ddos August 4, 2025

The North Korea-linked threat actor APT37, known for its persistent cyberespionage campaigns in South Korea and beyond,...

APT36 Escalates Cyber-Espionage on India: Poseidon Backdoor Targets Railways, Oil & Government APT36, Poseidon Backdoor

APT36 Escalates Cyber-Espionage on India: Poseidon Backdoor Targets Railways, Oil & Government

Ddos August 4, 2025

APT36—also known as Transparent Tribe—has long been linked to Pakistan-backed cyber-espionage operations. But as uncovered in a...

Cisco Talos Q2 Report: Phishing & Ransomware Dominate, with Qilin Using Deprecated PowerShell 1.0 Qilin Ransomware, Phishing & Ransomware

Cisco Talos Q2 Report: Phishing & Ransomware Dominate, with Qilin Using Deprecated PowerShell 1.0

Ddos August 1, 2025

Cisco Talos has released its latest Threat Intelligence Report for Q2 2025, revealing a threat landscape increasingly...

Gunra Ransomware Expands to Linux: New Variant Unleashes 100-Thread Encryption & Stealthy Tactics Gunra Ransomware, Linux Ransomware

Gunra Ransomware Expands to Linux: New Variant Unleashes 100-Thread Encryption & Stealthy Tactics

Ddos July 30, 2025

Trend Micro has issued a spotlight on the evolving Gunra ransomware, which has extended its reach to...

QWINS LTD, The Suspected Bulletproof Hosting Provider Fueling Global Malware Campaigns Bulletproof Hosting, Malware Infrastructure

QWINS LTD, The Suspected Bulletproof Hosting Provider Fueling Global Malware Campaigns

Ddos July 29, 2025

In a deep-dive into the infrastructure powering some of today’s most prevalent malware campaigns, security researcher Vasilis...

Koske Malware: AI-Generated Cryptojacker Hides in Panda Images to Infect Linux Servers Firefox Security, Crypto Wallets skidmap trojan

Koske Malware: AI-Generated Cryptojacker Hides in Panda Images to Infect Linux Servers

Ddos July 27, 2025

Aqua Security’s Nautilus research team has uncovered a malware campaign. Dubbed Koske, this advanced Linux malware shows...

Lumma Stealer Resurfaces After Takedown: New Stealth Tactics Target Users via Fake Cracks, CAPTCHAs & GitHub Lumma Stealer, Malware Resurgence

Lumma Stealer Resurfaces After Takedown: New Stealth Tactics Target Users via Fake Cracks, CAPTCHAs & GitHub

Ddos July 23, 2025

The Lumma Stealer malware suffered a massive takedown in May 2025, with over 2,300 malicious domains seized....

GhostContainer: Kaspersky Uncovers Stealthy Backdoor Infiltrating Government & High-Tech Exchange Servers Exchange Backdoor, GhostContainer

GhostContainer: Kaspersky Uncovers Stealthy Backdoor Infiltrating Government & High-Tech Exchange Servers

Ddos July 18, 2025

In a recent incident response operation, Kaspersky Labs uncovered a highly sophisticated backdoor named GhostContainer, designed to...

SonicWall SMA Devices Under Attack: UNC6148 Deploys OVERSTEP Rootkit for Persistent Access SonicWall Hack, Rootkit

SonicWall SMA Devices Under Attack: UNC6148 Deploys OVERSTEP Rootkit for Persistent Access

Ddos July 17, 2025

Google’s Threat Intelligence Group (GTIG) uncovers a stealthy, sophisticated campaign led by a financially motivated actor tracked...

Stealthy SquidLoader Malware Targets Hong Kong Financial Firms with Evasive Cobalt Strike Attacks

Ddos July 17, 2025

Trellix’s threat intelligence team has uncovered a stealthy malware campaign aimed squarely at financial services institutions in...

New PhantomRemote Backdoor Targets Russian Healthcare & IT, Linked to Rainbow Hyena Attacks PhantomRemote Backdoor, Rainbow Hyena

New PhantomRemote Backdoor Targets Russian Healthcare & IT, Linked to Rainbow Hyena Attacks

Ddos July 16, 2025

A new wave of phishing attacks has been observed sweeping across Russia’s healthcare and IT sectors, attributed...

SLOW#TEMPEST: Advanced Obfuscation Evades Static Analysis With CFG & Indirect Calls SLOW#TEMPEST, Malware Obfuscation

SLOW#TEMPEST: Advanced Obfuscation Evades Static Analysis With CFG & Indirect Calls

Ddos July 14, 2025

In late 2024, security researchers from Unit 42 uncovered a sophisticated new variant of the malware associated...

From Stealer to Spy: AMOS Malware Evolves into Full-Fledged Backdoor Threat for macOS AMOS, macOS backdoor

From Stealer to Spy: AMOS Malware Evolves into Full-Fledged Backdoor Threat for macOS

Ddos July 10, 2025

In a disturbing evolution of macOS malware, Moonlock Lab has discovered that Atomic macOS Stealer (AMOS)—already notorious...

Malicious Firefox Extensions Unmasked: Fake Games, VPNs, & Calendar Tools Hijack Traffic, Steal Crypto & OAuth Tokens Firefox Extensions, Malware Campaign

Malicious Firefox Extensions Unmasked: Fake Games, VPNs, & Calendar Tools Hijack Traffic, Steal Crypto & OAuth Tokens

Ddos July 7, 2025

A new report by the Socket Threat Research Team has uncovered a sprawling network of malicious Firefox...

Proofpoint Exposes TA829 & UNK_GreenSec’s Dual-Nature Campaigns TA829

Proofpoint Exposes TA829 & UNK_GreenSec’s Dual-Nature Campaigns

Ddos July 1, 2025

Proofpoint’s latest research exposes a pair of closely related threat actor clusters—TA829 and UNK_GreenSec. Described as “a...

Snake Keylogger Exploits Geopolitical Tensions with Oil-Themed Spearphishing Campaign

Ddos June 30, 2025

The S2 Group’s intelligence team has uncovered a new and sophisticated phishing campaign deploying Snake Keylogger, a...

GIFTEDCROOK Evolves: Arctic Wolf Labs Exposes Threat Group UAC-0226’s Espionage on Ukraine

Ddos June 27, 2025

In a major revelation, Arctic Wolf Labs has exposed a series of escalating cyber-espionage campaigns launched by...

China-Aligned Hive0154 APT Strikes Tibetan Community: Pubload Backdoor Delivered via Phishing Lures Artivion cybersecurity - Zero-Day Attacks

Artivion cybersecurity - Zero-Day Attacks

China-Aligned Hive0154 APT Strikes Tibetan Community: Pubload Backdoor Delivered via Phishing Lures

Ddos June 27, 2025

In a politically charged cyber-espionage campaign, IBM X-Force has identified the resurgence of the China-aligned threat group...

Iranian APT “Educated Manticore” Unleashes AI-Powered Phishing & Keylogging Against Critics

Ddos June 27, 2025

Check Point Research has uncovered a new wave of targeted cyber-espionage activity linked to Educated Manticore, an...

LapDogs: China-Nexus Threat Actors Deploy Covert ORB Network on 1,000+ SOHO Devices Globally LapDogs, China-Nexus ORB

LapDogs: China-Nexus Threat Actors Deploy Covert ORB Network on 1,000+ SOHO Devices Globally

Ddos June 25, 2025

In a new report, SecurityScorecard’s STRIKE threat intelligence team has exposed a covert espionage campaign dubbed “LapDogs”,...