Experts from Trend Micro have identified the pervasive deployment of PeckBirdy, a malevolent JavaScript framework orchestrated by collectives associated with Chinese state apparatuses. This instrument has been operational since at least 2023, utilized in...
Fabricated notifications impersonating the Income Tax Department of India have emerged as the facade for a sophisticated malware campaign, culminating in the deployment of the Blackmoon banking trojan. This offensive specifically targets the Indian...
The American athletic titan Nike has initiated an internal forensic audit following allegations of a substantial corporate data breach. The extortionist syndicate operating under the moniker WorldLeaks has disseminated a curated selection of files...
Adversaries have pioneered a sophisticated method of weaponizing GitHub as a conduit for malware distribution, camouflaging their payloads as legitimate installers for prominent developer utilities. At the epicenter of this campaign is GitHub Desktop;...
In late December 2025, the Polish power grid was besieged by a formidable cyberattack. This incursion, transpiring during the final days of the year, has been characterized by authorities as the most significant assault...
Threat actors persist in exploiting a critical vulnerability within VMware vCenter Server, notwithstanding the fact that the remediating patch was disseminated over a year ago. Broadcom has substantiated that this flaw is currently being...
Security researchers have documented a sophisticated, multi-stage phishing campaign targeting users within the Russian Federation. This offensive employs a dual-payload strategy, integrating both ransomware and the Amnesia RAT (Remote Access Trojan). The findings, disseminated...
A profound vulnerability within the internet’s architectural framework, designated as BGP Vortex, has garnered significant academic scrutiny following its revelation at the USENIX Security 2025 symposium. The flaw stems from the inherent instabilities of...
While it may appear that every emergent Trojan or infostealer is a unique narrative defined by its own “signature,” the Splunk Threat Research Team has adopted a broader perspective, uncovering a disconcerting uniformity. Many...
Waltio, a French enterprise specializing in fiscal calculations for cryptocurrency holders, has been targeted by a blackmail campaign orchestrated by the notorious ShinyHunters collective. The adversaries assert that they have compromised the personal telemetry...
A sophisticated malicious instrument christened Stanley exemplifies a paradigm shift in the evolution of browser extension exploits. We are no longer contending with haphazard website spoofs or rudimentary phishing portals; instead, we are witnessing...
Until recently, cyber offensives were synonymous with “exotic” malicious servers and conspicuously suspicious IP addresses. Today, that paradigm has shifted entirely. A comprehensive report by Team Cymru elucidates the sophisticated maneuvers of Scattered Spider,...
