Skip to main content

Tag: threat actor

39 articles

APT28 LameHug: Exclusive Risky AI Threat Warning

APT28 LameHug: Exclusive Risky AI Threat Warning

MITRE’s take on APT28’s LameHug at Black Hat is a wake-up call: while crude now, this testbed shows how AI and automation could quickly turn basic tools into powerful cyber weapons. Defenders, policymakers, and everyday users should sharpen defenses and share intel now—before experiments like this graduate into routine attacks.

Analyst 207
QR Phishing FIDO Keys: Exclusive Risky Threat Revealed

QR Phishing FIDO Keys: Exclusive Risky Threat Revealed

Think your FIDO key makes you untouchable? PoisonSeed’s QR‑phishing scam shows how a convincing QR scan and fake approval prompt can trick users into granting access—learn how these attacks work and what simple steps you can take to stay safe.

Analyst 207
Threat Actor Targets Indian Defense Sector: Key Insights Revealed

Threat Actor Targets Indian Defense Sector: Key Insights Revealed

Discover how the elusive APT36 cyber-espionage group is stealthily targeting Indias defense sector, revealing the urgent need for stronger digital defenses in a world where cyber warfare reshapes national security.

Analyst 207
Threat Actor Targets Indian Defense Sector in Rising Cyberattack

Threat Actor Targets Indian Defense Sector in Rising Cyberattack

A stealthy cyber threat group is intensifying attacks on Indias defense networks, revealing how vulnerable even the most secure secrets can be in today’s digital battlefield.

Analyst 207
Threat Actor Targeting Indian Defense Sector Raises Security Alarms

Threat Actor Targeting Indian Defense Sector Raises Security Alarms

A sophisticated cyber-espionage group is zeroing in on India’s defense sector, exposing critical vulnerabilities and sparking urgent calls for stronger digital defenses to protect national security.

Analyst 207
Texas Dept. of Transportation breached, 300k crash records stolen

Texas Dept. of Transportation breached, 300k crash records stolen

Texas Dept. of Transportation breach: 300K crash records stolen, raising major data security concerns and prompting urgent investigations.

Analyst 207
APT41 Leverages Google Calendar for Stealthy Malware Control Operations

APT41 Leverages Google Calendar for Stealthy Malware Control Operations

APT41 leverages Google Calendar to manage covert malware operations, using scheduled commands to hide control activities and evade detection.

Analyst 207
Craft CMS Vulnerability: Hackers Exploit CVE-2025-32432 to Deploy Cryptominer and Proxyware

Craft CMS Vulnerability: Hackers Exploit CVE-2025-32432 to Deploy Cryptominer and Proxyware

Craft CMS vulnerability (CVE-2025-32432) exploited by hackers to deploy cryptominer and proxyware, compromising system security and data integrity.

Analyst 207
Chrome Unveils One-Click Update for Compromised Passwords

Chrome Unveils One-Click Update for Compromised Passwords

Chrome introduces a one-click update for compromised passwords, streamlining security and simplifying password management for safer browsing.

Analyst 207
Twilio Refutes Breach Allegations Amid Alleged Steam 2FA Code Leak

Twilio Refutes Breach Allegations Amid Alleged Steam 2FA Code Leak

Twilio denies breach allegations amid claims of a leaked Steam 2FA code. Discover the facts behind the security controversy and the company’s firm denial.

Analyst 207
DPRK-Backed TA406 Targets Ukraine With Malware Campaigns

DPRK-Backed TA406 Targets Ukraine With Malware Campaigns

DPRK-backed TA406 targets Ukraine with malware campaigns. Discover its tactics, evolving cyber threats, and the potential impact on regional security.

Analyst 207
Chinese hackers behind attacks targeting SAP NetWeaver servers

Chinese hackers behind attacks targeting SAP NetWeaver servers

Chinese hackers behind targeted attacks on SAP NetWeaver servers exploit vulnerabilities, escalating global cybersecurity concerns.

Analyst 207
Commvault Confirms Hackers Exploited CVE-2025-3928 as Zero-Day in Azure Breach

Commvault Confirms Hackers Exploited CVE-2025-3928 as Zero-Day in Azure Breach

Commvault confirms hackers exploited CVE-2025-3928, a zero-day vulnerability in an Azure breach, exposing critical flaws and prompting urgent security reviews.

Analyst 207
Mustang Panda Expands Operations in Myanmar with StarProxy, EDR Bypass, and TONESHELL Enhancements

Mustang Panda Expands Operations in Myanmar with StarProxy, EDR Bypass, and TONESHELL Enhancements

Mustang Panda expands in Myanmar, enhancing operations with StarProxy, EDR bypass techniques, and TONESHELL improvements for advanced cyber capabilities.

Analyst 207
New Chinese-Linked Backdoor Threatens European Companies

New Chinese-Linked Backdoor Threatens European Companies

A new Chinese-linked backdoor poses a significant threat to European companies, compromising security and sensitive data across various industries.

Analyst 207