UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
A previously undocumented threat activity cluster known as UNC6692 has been observed leveraging social engineering tactics via Microsoft Teams to...
activity
UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
A previously undocumented threat activity cluster known as UNC6692 has been observed leveraging social engineering tactics via Microsoft Teams to...
Cargo thieving hackers running sophisticated remote access campaigns, researchers find
Security researchers recently spent a month getting a first-hand look at the activity of cybercriminals targeting the trucking and logistics...
TeamPCP’s Telnyx Attack Marks a Shift in Tactics Beyond LiteLLM
The Telnyx compromise indicates a continued change in the techniques used in TeamPCP’s supply‑chain activity, with adjustments to tooling, delivery...
Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign
Ravie LakshmananMar 30, 2026Threat Intelligence / Network Intrusion Three threat activity clusters aligned with China have targeted a government organization...
French aircraft carrier Charles de Gaulle tracked via Strava activity in OPSEC failure
French aircraft carrier Charles de Gaulle tracked via Strava activity in OPSEC failure Pierluigi Paganini March 20, 2026 A French...
Destructive Activity Targeting Stryker Highlights Emerging Supply Chain Risks
Blogs Blog In this post, we examine the disruptive cyber activity targeting Stryker, potential links to the Handala persona,...
Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool
Ravie LakshmananMar 10, 2026Cloud Security / API Security Salesforce has warned of an increase in threat actor activity that's aimed...
FBI Investigates Suspicious Activity in Surveillance Platform
Image: halfpoint/Envato The Federal Bureau of Investigation (FBI) is investigating suspicious cyber activity involving systems used to process surveillance and...
149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict
Cybersecurity researchers have warned of a surge in retaliatory hacktivist activity following the U.S.-Israel coordinated military campaign against Iran, codenamed...
SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware Chains
Ravie LakshmananMar 03, 2026Malware / Phishing The threat activity cluster known as SloppyLemming has been attributed to a fresh set...
Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity
Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity Pierluigi Paganini March 02, 2026 UK’s NCSC warns...
UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor
Ravie LakshmananFeb 26, 2026Malware / Threat Intelligence A previously undocumented threat activity cluster has been attributed to an ongoing malicious...
UnsolicitedBooker Targets Central Asian Telecoms With LuciDoor and MarsSnake Backdoors
The threat activity cluster known as UnsolicitedBooker has been observed targeting telecommunications companies in Kyrgyzstan and Tajikistan, marking a shift...
LummaStealer activity spikes post-law enforcement disruption
LummaStealer activity spikes post-law enforcement disruption Pierluigi Paganini February 12, 2026 Bitdefender reports a surge in LummaStealer activity, showing the...
