Technology ❯ Cybersecurity

Threat Intelligence

Malware Analysis Vulnerabilities Malware Incident Response Attack Vectors Exploitation Indicators of Compromise Threat Actors Advanced Persistent Threats Ransomware Hacking Groups Vulnerability Management Google Threat Intelligence Group Social Engineering State-Sponsored Attacks Active Exploitation Phishing Microsoft Vulnerability Disclosure Cyber Attacks AI in Cybersecurity Data Analysis Nation-State Actors APT Groups Cybercrime Cyber Espionage Phishing Campaigns Hacker Groups Spyware Credential Theft Attack Campaigns Hacking Malware Campaigns Ransomware Attacks Cyber Threats Security Research Fraud Prevention Attack Techniques Collaboration Data Sharing Mandiant Exploitation Attempts Brute Force Attacks Ransomware Evolution Attribution DDoS Attacks Microsoft Threat Intelligence Center Attack Patterns Check Point Research Exploits Criminal IP Cisco Talos Malware Trends Exploitation Techniques Phishing Attacks Espionage Information Sharing Hacking Techniques Data Breaches Cyber Threat Intelligence Cybercriminal Groups Reconnaissance Research Ransomware Operations Spyware Campaigns Attack Analysis Hackers AI Manipulation Mergers and Acquisitions Government Agencies Ransomware Threats Cyber Deception Industry Collaboration Akamai Artificial Intelligence State Actors Threat Actor Identification GreyNoise Black Lotus Labs Iranian Cyber Threats AI-driven Solutions Phishing Detection Ransomware Trends International Cyber Operations Attack Mitigation Scam Detection Fraud Operations Malicious Software IP Address Analysis Software Updates Endpoint Detection and Response Ransomware Campaigns Proactive Security Autonomous Security Risk Management Emerging Threats Data Exfiltration Nation-State Attacks Network Security Malicious Infrastructure

Microsoft: North Korean Hackers Use AI to Scale Fake IT Worker Schemes, Test Agentic Tools

Microsoft urges organizations to treat these hires as insider risks.

Zscaler Ties North Korea’s APT37 to ‘Ruby Jumper’ Using Zoho WorkDrive and USB Malware to Breach Air‑Gapped Networks

Scattered LAPSUS$ Hunters Recruits Women for Paid IT Help‑Desk Vishing

Microsoft Warns of Fake Next.js Repos That Backdoor Developers’ Machines

npm Worm 'SANDWORM_MODE' Exposed Targeting Developer and CI Secrets Through Typosquatted Packages

Dell Patches RecoverPoint Zero-Day Exploited Since 2024 by Suspected China Group

Researchers Show Copilot and Grok Can Be Co‑opted as Covert Malware C2 Relays

CISA Adds Chrome Zero-Day and Legacy Bugs to KEV With March 10 Patch Deadline

Microsoft Details ClickFix Variant Using DNS Lookups to Stage Malware

Google Blocks Large-Scale Gemini Cloning Attempts as Report Details State-Backed Abuse

BeyondTrust Pre-Auth RCE Is Now Being Exploited in the Wild

Microsoft Fixes Six Actively Exploited Zero‑Days in February Patch Tuesday

LummaStealer Returns to Scale as CastleLoader and 'ClickFix' Lures Drive New Wave

Ivanti Patches EPM as EPMM Exploitation Campaign Traces to Single Bulletproof-Hosted IP

New Analysis Disputes Claims of Pre-Disclosure Telnet Blocking

Ethereum Foundation Funds SEAL Engineer and Unveils Trillion Dollar Security Dashboard

ZeroDayRAT Mobile Spyware Sold on Telegram Gives Full Control of Android and iOS Devices

Singapore Details UNC3886 Cyber Campaign on All Four Telcos as Intrusions Contained

Attackers Shift From Ransomware Encryption to Stealthy ‘Digital Parasites,’ Picus Report Finds

Active Attacks Hit SolarWinds Web Help Desk, Abusing Zoho ManageEngine and Velociraptor