Webworm: New burrowing techniques
ESET researchers analyzed the 2025 activity of Webworm, a China-aligned APT group that started out targeting organizations in Asia, but...
activity
Webworm: New burrowing techniques
ESET researchers analyzed the 2025 activity of Webworm, a China-aligned APT group that started out targeting organizations in Asia, but...
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that...
Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets
Cybersecurity researchers are sounding the alarm about what has been described as "malicious activity" in newly published versions of node-ipc....
UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
A previously undocumented threat activity cluster known as UNC6692 has been observed leveraging social engineering tactics via Microsoft Teams to...
UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
A previously undocumented threat activity cluster known as UNC6692 has been observed leveraging social engineering tactics via Microsoft Teams to...
Cargo thieving hackers running sophisticated remote access campaigns, researchers find
Security researchers recently spent a month getting a first-hand look at the activity of cybercriminals targeting the trucking and logistics...
TeamPCP’s Telnyx Attack Marks a Shift in Tactics Beyond LiteLLM
The Telnyx compromise indicates a continued change in the techniques used in TeamPCP’s supply‑chain activity, with adjustments to tooling, delivery...
Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign
Ravie LakshmananMar 30, 2026Threat Intelligence / Network Intrusion Three threat activity clusters aligned with China have targeted a government organization...
French aircraft carrier Charles de Gaulle tracked via Strava activity in OPSEC failure
French aircraft carrier Charles de Gaulle tracked via Strava activity in OPSEC failure Pierluigi Paganini March 20, 2026 A French...
Destructive Activity Targeting Stryker Highlights Emerging Supply Chain Risks
Blogs Blog In this post, we examine the disruptive cyber activity targeting Stryker, potential links to the Handala persona,...
Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool
Ravie LakshmananMar 10, 2026Cloud Security / API Security Salesforce has warned of an increase in threat actor activity that's aimed...
FBI Investigates Suspicious Activity in Surveillance Platform
Image: halfpoint/Envato The Federal Bureau of Investigation (FBI) is investigating suspicious cyber activity involving systems used to process surveillance and...
149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict
Cybersecurity researchers have warned of a surge in retaliatory hacktivist activity following the U.S.-Israel coordinated military campaign against Iran, codenamed...
SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware Chains
Ravie LakshmananMar 03, 2026Malware / Phishing The threat activity cluster known as SloppyLemming has been attributed to a fresh set...
