threat intelligence Archives • Page 7 of 12 • Daily CyberSecurity

Intelligence Compromised: Data Abyss Report Details China’s Exploitation of U.S. IARPA Research IARPA Research Security Data Abyss Report Telecom threat, Secret Service cybersecurity news - Cyber Espionage Campaign

IARPA Research Security Data Abyss Report Telecom threat, Secret Service cybersecurity news - Cyber Espionage Campaign

Intelligence Compromised: Data Abyss Report Details China’s Exploitation of U.S. IARPA Research

Ddos March 5, 2026

A recently report from Data Abyss titled “Intelligence Compromised” has revealed a persistent and strategic pattern of...

The Return of Funnull: Rebranded and Ramping Up Supply Chain Attacks Funnull Syndicate RingH23 Framework

The Return of Funnull: Rebranded and Ramping Up Supply Chain Attacks

Ddos March 5, 2026

Cybersecurity researchers at XLab have issued a major report detailing the re-emergence of Funnull (also known as...

Cyber Retaliation Escalates: Iranian Hacktivists Target Critical Infrastructure Following Military Strikes Iranian Hacktivists Operation Epic Fury Cyber New Generation Warfare Russian Hybrid Escalation Plex data breach Water Systems Cybersecurity - Threat Actor Naming Standard

Iranian Hacktivists Operation Epic Fury Cyber New Generation Warfare Russian Hybrid Escalation Plex data breach Water Systems Cybersecurity - Threat Actor Naming Standard

Cyber Retaliation Escalates: Iranian Hacktivists Target Critical Infrastructure Following Military Strikes

Ddos March 4, 2026

Sophos X-Ops Counter Threat Unit (CTU) researchers have observed a surge in Iranian hacktivist activity across Telegram,...

OAuth Hijack: Phishing Campaigns Weaponize Legitimate Redirection to Bypass Defenses OAuth Phishing Redirect URI Abuse

OAuth Hijack: Phishing Campaigns Weaponize Legitimate Redirection to Bypass Defenses

Ddos March 4, 2026

Microsoft Defender researchers have exposed a series of sophisticated phishing campaigns that exploit the inherent trust in...

The BurrowShell Threat: Inside ‘Sloppy Lemming’s’ Stealthy Cyber Espionage Campaign in South Asia Sloppy Lemming BurrowShell Malware

The BurrowShell Threat: Inside ‘Sloppy Lemming’s’ Stealthy Cyber Espionage Campaign in South Asia

Ddos March 4, 2026

Cybersecurity researchers at Arctic Wolf have released a comprehensive analysis of a massive, year-long cyber espionage operation...

AuraStealer: The “Result-Oriented” Malware Rising from the Post-Lumma Void AuraStealer Malware Infostealer

AuraStealer: The “Result-Oriented” Malware Rising from the Post-Lumma Void

Ddos March 4, 2026

Following the high-profile takedown of the Lumma stealer infrastructure in 2025, a new threat is rapidly maneuvering...

PlugX Evolves: New “Meeting Invitation” Phishing Campaign Leverages Trusted Security Software Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

PlugX Evolves: New “Meeting Invitation” Phishing Campaign Leverages Trusted Security Software

Ddos March 4, 2026

Cybersecurity researchers at LAB52 have released a detailed analysis of a new infection chain for the long-running...

GemStuffer RubyGems Campaign RubyGems Data Exfiltration TanStack npm Compromise Supply Chain Attack DNS Hijacking APT28 (Fancy Bear) OpenVSX Supply Chain Attack Checkmarx Plugin Breach Stryker Cyberattack CISA Alert Trans-Regional Cyber Conflict Operation Epic Fury Cyber Operation MacroMaze APT28 Cyber Espionage Notepad++ Supply Chain Attack Lotus Blossom Group Defense Industrial Base Threats GTIG Report APT28 Operation Neusploit CVE-2026-21509 Bookworm Malware

Cyber Escalation: Multi-Vector Attacks Surge Following “Operation Epic Fury”

Ddos March 3, 2026

In the wake of the massive joint offensive launched by the United States and Israel on February...

From Chat App to Dark Web: How Telegram Became the New Hub for Cybercrime CVE-2024-22394

From Chat App to Dark Web: How Telegram Became the New Hub for Cybercrime

Ddos March 3, 2026

For millions of people around the world, Telegram is a secure and convenient way to chat with...

The GTFire Scheme: How Cybercriminals are Weaponizing Google’s Trusted Services for Global Phishing GTFire Phishing Campaign Google Firebase Abuse

GTFire Phishing Campaign Google Firebase Abuse

The GTFire Scheme: How Cybercriminals are Weaponizing Google’s Trusted Services for Global Phishing

Ddos March 2, 2026

Modern cybercriminals are evolving, increasingly hiding their malicious activities within the very legitimate cloud services that businesses...

Massive SonicWall Reconnaissance Campaign Signals Imminent Ransomware Strikes SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

Massive SonicWall Reconnaissance Campaign Signals Imminent Ransomware Strikes

Ddos February 28, 2026

Between February 22 and February 25, 2026, threat intelligence firm GreyNoise detected a highly coordinated reconnaissance campaign...

North Korea’s Lazarus Group Deploys Medusa Ransomware Against U.S. Healthcare SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

North Korea’s Lazarus Group Deploys Medusa Ransomware Against U.S. Healthcare

Ddos February 26, 2026

A disturbing shift in nation-state cyber tactics has been uncovered as North Korean state-backed attackers integrate Medusa...

Stealth & Persistence: MuddyWater’s New Rust-Based Payload Mimics Cloudflare and Reddit

Ddos February 25, 2026

While financially motivated cybercrime often dominates the headlines, state-sponsored espionage operates quietly in the background, prioritizing stealth...

Weaver E-cology RCE CVE-2026-22679 CVE-2026-20127 Cisco SD-WAN Exploitation AI-Driven Cyberattack ARXON Malware React Server Components Vulnerability CVE-2025-55182 FortiWeb Auth Bypass, Unauthenticated Admin Takeover RayInitiator Bootkit, LINE VIPER CVE-2025-59689 Department of the Treasury cybersecurity - CVE-2025-0108 PoC CVE-2025-31103 Dior Data Breach SK Telecom data breach, long-term intrusion

Machine-Speed Intrusions: How One Hacker Used DeepSeek and Claude to Scale a Global Campaign

Ddos February 24, 2026

A report by threat researcher @goyaramen reveals a sophisticated software pipeline that embeds Large Language Models (LLMs)...

Silver Fox APT Unleashes ‘Winos 4.0’ Malware via BYOVD Attacks Winos 4.0 Malware Silver Fox APT RapperBot BVIEC cyberattack - CNC group DAMASCENED PEACOCK, malware analysis

Winos 4.0 Malware Silver Fox APT RapperBot BVIEC cyberattack - CNC group DAMASCENED PEACOCK, malware analysis

Silver Fox APT Unleashes ‘Winos 4.0’ Malware via BYOVD Attacks

Ddos February 24, 2026

According to a new threat intelligence report, a highly organized Advanced Persistent Threat (APT) group has launched...

Hackers Weaponize Facebook Ads with Fake Windows 11 Updates Fake Windows 11 Ads Info-Stealing Malware

Hackers Weaponize Facebook Ads with Fake Windows 11 Updates

Ddos February 24, 2026

Cybercriminals are leveraging the trust users place in their social media feeds to distribute stealthy information-stealing malware....

The ‘Human Verification’ Trap: ClickFix Campaign Hijacks Trusted Sites to Deploy MIMICRAT MIMICRAT Malware ClickFix Campaign

The ‘Human Verification’ Trap: ClickFix Campaign Hijacks Trusted Sites to Deploy MIMICRAT

Ddos February 24, 2026

Security researchers are sounding the alarm over a highly sophisticated malware campaign that weaponizes human helpfulness to...

Hackers Exploit Critical BeyondTrust Flaw to Deploy VShell and SparkRAT Across Multiple Sectors BeyondTrust Vulnerability CVE-2026-1731 UPBIT $369M Hack CVE-2024-55591 Ivanti VPN vulnerability, cyber espionage

BeyondTrust Vulnerability CVE-2026-1731 UPBIT $369M Hack CVE-2024-55591 Ivanti VPN vulnerability, cyber espionage

Hackers Exploit Critical BeyondTrust Flaw to Deploy VShell and SparkRAT Across Multiple Sectors

Ddos February 23, 2026

A critical security flaw in a widely used enterprise access platform is under active attack, prompting urgent...

The Invisible Backdoor: AI Exposes Malicious OAuth Apps Hiding in Microsoft Entra ID Malicious OAuth Apps Entra ID Homoglyph Attack

The Invisible Backdoor: AI Exposes Malicious OAuth Apps Hiding in Microsoft Entra ID

Ddos February 23, 2026

The integration of third-party applications into corporate environments has become the lifeblood of modern productivity, but it...

The Startup Stealer: How AI and Discord Powered the Arkanix MaaS Operation Arkanix Stealer Malware-as-a-Service (MaaS)

The Startup Stealer: How AI and Discord Powered the Arkanix MaaS Operation

Ddos February 23, 2026

The cybercrime underground is increasingly mirroring the legitimate tech industry, adopting customer-centric marketing, tiered subscriptions, and even...