threat intelligence Archives • Page 5 of 13 • Daily CyberSecurity

GlassWorm Abuses VS Code Extensions to Fuel Supply Chain Attacks GlassWorm Malware Open VSX Supply Chain

GlassWorm Abuses VS Code Extensions to Fuel Supply Chain Attacks

Do Son March 17, 2026

The threat actor known as GlassWorm has significantly escalated its operations, pivoting from simple malicious listings to...

Operation CamelClone: New Global Espionage Campaign Hijacks Public Cloud Tools Operation CamelClone Cloud Storage Abuse

Operation CamelClone: New Global Espionage Campaign Hijacks Public Cloud Tools

Do Son March 17, 2026

Cybersecurity researchers at Seqrite Labs have identified a widespread and highly targeted espionage operation dubbed “Operation CamelClone”....

The Fake VPN Trap: Microsoft Warns of Storm-2561 SEO Poisoning Campaigns Stealing Corporate Credentials

Do Son March 17, 2026

Cybersecurity investigators at Microsoft Defender Experts have sounded the alarm on a deceptive credential theft campaign targeting...

CISA Flags Actively Exploited Wing FTP Server Flaw Wing FTP Server CVE-2025-47813

CISA Flags Actively Exploited Wing FTP Server Flaw

Do Son March 16, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive after adding a new vulnerability...

The $800M Inside Job: OFAC Sanctions North Korean IT Network Defrauding U.S. Businesses NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

The $800M Inside Job: OFAC Sanctions North Korean IT Network Defrauding U.S. Businesses

Do Son March 16, 2026

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) has issued a major sanctions...

Weaponizing Conflict: ThreatLabz Exposes Mustang Panda’s Rapid PlugX Campaign in the Middle East Mustang Panda PlugX Backdoor

Weaponizing Conflict: ThreatLabz Exposes Mustang Panda’s Rapid PlugX Campaign in the Middle East

Do Son March 16, 2026

Recently, cybersecurity researchers at ThreatLabz have uncovered a new campaign by a China-nexus threat actor. The operation,...

The Face of Destruction: Inside Void Manticore’s ‘Handala Hack’ AI-Assisted Wiping Operations Void Manticore Handala Hack

The Face of Destruction: Inside Void Manticore’s ‘Handala Hack’ AI-Assisted Wiping Operations

Do Son March 16, 2026

Cybersecurity researchers at Check Point Research have released a detailed expose on Handala Hack, a prominent online...

‘PixRevolution’ Android Trojan Hijacks Brazil’s PIX in Real-Time PixRevolution Android Banking Trojan

‘PixRevolution’ Android Trojan Hijacks Brazil’s PIX in Real-Time

Do Son March 16, 2026

Cybersecurity experts at Zimperium’s zLabs have unmasked a high-stakes mobile threat named “PixRevolution,” a novel Android banking...

The End of the Static Era: Trellix Uncovers Fully Fileless Remcos RAT Campaign Remcos RAT Fileless Malware

The End of the Static Era: Trellix Uncovers Fully Fileless Remcos RAT Campaign

Do Son March 16, 2026

In the ever-evolving arms race between hackers and defenders, the “static” era is officially over. A new...

Inside the Arsenal: Exposed Server Reveals APT28’s ‘Roundish’ Toolkit and Advanced Cyber Espionage Tactics APT28 Toolkit Roundish Malware

Inside the Arsenal: Exposed Server Reveals APT28’s ‘Roundish’ Toolkit and Advanced Cyber Espionage Tactics

Do Son March 16, 2026

Cybersecurity investigators at Hunt Intelligence discovers an exposed open directory that unmasks the inner workings of one...

The Shotgun Approach: BitSight Exposes RondoDox Botnet’s Rapid-Fire 174-Exploit Arsenal Targeting IoT RondoDox Botnet BitSight IoT Security

The Shotgun Approach: BitSight Exposes RondoDox Botnet’s Rapid-Fire 174-Exploit Arsenal Targeting IoT

Do Son March 16, 2026

As the Internet of Things (IoT) ecosystem swells toward an estimated 41.1 billion connected devices by 2030,...

The Claude Code Trap: Bitdefender Unmasks Fake Google Ads Hijacking Developer Terminals Claude Code Malvertising ClickFix Campaign

The Claude Code Trap: Bitdefender Unmasks Fake Google Ads Hijacking Developer Terminals

Do Son March 16, 2026

Cybersecurity researchers at Bitdefender have uncovered a high-stakes “maladvertisement” campaign specifically designed to ensnare developers and AI...

Blitz Brigantine Weaponizes Email Bombing and DNS MX Records to Deploy AOBackdoor Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Blitz Brigantine Weaponizes Email Bombing and DNS MX Records to Deploy AOBackdoor

Do Son March 16, 2026

Cybersecurity experts at BlueVoyant have uncovered a sophisticated evolution in the tactics of the threat group known...

Blurring the Lines: How Iranian State Hackers are Weaponizing RaaS and the Cybercriminal Underground Iranian Cyber Espionage Void Manticore

Blurring the Lines: How Iranian State Hackers are Weaponizing RaaS and the Cybercriminal Underground

Do Son March 15, 2026

A striking evolution is occurring in the world of state-sponsored cyber warfare. According to a recent deep-dive...

Silence of the Hops: The KadNap Botnet Conscripts 14,000 Routers KadNap Botnet Asus Routers

Silence of the Hops: The KadNap Botnet Conscripts 14,000 Routers

Do Son March 15, 2026

Cybersecurity researchers at Black Lotus Labs, the threat intelligence arm of Lumen Technologies, have unmasked a sophisticated...

Cisco SD-WAN Vulnerability CVE-2026-20133 FortiGate Compromise Ivanti EPMM Zero-Day CVE-2026-1281 SmarterMail Vulnerability Storm-2603 WatchGuard Zero-Day, IKEv2 Out-of-Bounds Write Cisco Zero-Day, UAT-9686 Chinese APT FortiWeb RCE Exploitation CVE-2025-58034 VMware Zero-Day, Privilege Escalation Sitecore, remote code execution CVE-2025-53690 Windows CLFS, Privilege Escalation CVE-2024-47575 & CVE-2024-11120 CVE-2025-24983 vulnerability

SentinelOne Unmasks Exploitation of FortiGate Appliances as Gateways to Network Takeover

Do Son March 15, 2026

The SentinelOne Digital Forensics & Incident Response (DFIR) team issued a warning: the very appliances designed to...

Unit 42 Unmasks CL-STA-1087’s Years-Long Cyber Espionage Against Asian Militaries UNC5221 HAFNIUM Extradition PRC State Espionage

Unit 42 Unmasks CL-STA-1087’s Years-Long Cyber Espionage Against Asian Militaries

Do Son March 13, 2026

Security researchers at Unit 42 have pulled back the curtain on a sophisticated espionage cluster they’ve dubbed...

The “CrashFix” Evolution: KongTuke’s New Playbook for Enterprise Infiltration UAT-8099 BadIIS Malware Pacific Islands Forum Cyberattack

The “CrashFix” Evolution: KongTuke’s New Playbook for Enterprise Infiltration

Do Son March 13, 2026

A recent deep-dive investigation from Trend Micro Managed Detection and Response (MDR) has unmasked the evolving tactics...

TaxiSpy RAT: New Android Banking Trojan Targets Russian Financial Sector Android zero day flaw June 2026 security bulletin RuTaxi Trojan Android Banking Malware Pixel 9 zero-click exploit, Dolby UDC vulnerability CVE-2025-54957 NexusRoute Android RAT, India E-Challan Phishing ClayRat Self-Defense, Android Accessibility Abuse Android Trojan, AntiDot Android Malware "BadPack"

Android zero day flaw June 2026 security bulletin RuTaxi Trojan Android Banking Malware Pixel 9 zero-click exploit, Dolby UDC vulnerability CVE-2025-54957 NexusRoute Android RAT, India E-Challan Phishing ClayRat Self-Defense, Android Accessibility Abuse Android Trojan, AntiDot Android Malware "BadPack"

TaxiSpy RAT: New Android Banking Trojan Targets Russian Financial Sector

Do Son March 13, 2026

A highly sophisticated Android Banking Trojan has emerged, combining traditional financial theft with advanced Remote Access Trojan...

High-Privilege Havoc: Splunk Patches RCE Flaw Lurking in File Previews

Do Son March 12, 2026

Splunk has released a critical security advisory regarding a high-severity Remote Command Execution (RCE) vulnerability, tracked as...

Critical Alert 1 Active Exploit Detected Today