actor

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

AndyC 4 February 2026

Ravie LakshmananFeb 03, 2026Vulnerability / Malware The Russia-linked state-sponsored threat actor known as APT28 (aka UAC-0001) has been attributed to...

Read More

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

AndyC 3 February 2026

Ravie LakshmananFeb 03, 2026Malware / Open Source A China-linked threat actor known as Lotus Blossom has been attributed with medium...

Read More

Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and Activists

Iran-Linked RedKitten Cyber Campaign Targets Human Rights NGOs and Activists

AndyC 1 February 2026

A Farsi-speaking threat actor aligned with Iranian state interests is suspected to be behind a new campaign targeting non-governmental organizations...

Read More

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

AndyC 31 January 2026

Cybersecurity researchers have discovered a new campaign attributed to a China-linked threat actor known as UAT-8099 that took place between...

Read More

Konni Hackers Deploy AI-Generated PowerShell Backdoor Against Blockchain Developers

Konni Hackers Deploy AI-Generated PowerShell Backdoor Against Blockchain Developers

AndyC 27 January 2026

Ravie LakshmananJan 26, 2026Malware / Endpoint Security The North Korean threat actor known as Konni has been observed using PowerShell...

Read More

EDR killers explained: Beyond the drivers

EDR killers explained: Beyond the drivers

AndyC 20 March 2026

In recent years, EDR killers have become one of the most commonly seen tools in modern ransomware intrusions: an attacker acquires high privileges, deploys such...

Read More

Face value: What it takes to fool facial recognition

Face value: What it takes to fool facial recognition

AndyC 14 March 2026

ESET’s Jake Moore used smart glasses, deepfakes and face swaps to ‘hack’ widely-used facial recognition systems – and he'll demo it all at RSAC 2026...

Read More

Cyber fallout from the Iran war: What to have on your radar

Cyber fallout from the Iran war: What to have on your radar

AndyC 13 March 2026

The war in Iran was less than 24 hours old when it produced a historic first: the deliberate targeting of commercial data centers. On March...

Read More

Sednit reloaded: Back in the trenches

Sednit reloaded: Back in the trenches

AndyC 11 March 2026

Since April 2024, Sednit’s advanced development team has reemerged with a modern toolkit centered on two paired implants, BeardShell and Covenant, each using a different...

Read More

What cybersecurity actually does for your business

What cybersecurity actually does for your business

AndyC 7 March 2026

Business Security The ability to continue operating safely in an unsafe environment where competitors cannot is a competitive advantage that is rarely measured or discussed...

Read More

How SMBs use threat research and MDR to build a defensive edge

How SMBs use threat research and MDR to build a defensive edge

AndyC 6 March 2026

Corporate IT and security teams have the unenviable task of keeping relentless and increasingly sophisticated adversaries at bay. They’re often faced with limited resources and...

Read More

Chainguard Assemble 2026 and the Security Factory Mindset

Chainguard Assemble 2026 and the Security Factory Mindset

AndyC 21 March 2026

Cloud Security Posture Management in 2026

BSidesSLC 2025 – Getting Things Fixed – Keynote On Security Wins (And Fails)

AndyC 21 March 2026

That “job brief” on Google Forms could infect your device

That “job brief” on Google Forms could infect your device

AndyC 21 March 2026

Amazon is aiming for a comeback in the smartphone market

Inside AutoSecT: How AI Agents Are Transforming Software Composition Analysis

AndyC 21 March 2026

Apple urges iPhone users to update as Coruna and DarkSword exploit kits emerge

Apple urges iPhone users to update as Coruna and DarkSword exploit kits emerge

AndyC 21 March 2026