Silver Fox Expands Winos 4.0 Attacks to Japan and Malaysia via HoldingHands RAT
The threat actors behind a malware family known as Winos 4.0 (aka ValleyRAT) have expanded their targeting footprint from China...
actors
Operation Zero Disco: Threat actors targets Cisco SNMP flaw to drop Linux rootkits
Operation Zero Disco: Threat actors targets Cisco SNMP flaw to drop Linux rootkits Pierluigi Paganini October 16, 2025 Hackers exploit...
Chinese Hackers Exploit ArcGIS Server as Backdoor for Over a Year
Oct 14, 2025Ravie LakshmananCyber Espionage / Network Security Threat actors with ties to China have been attributed to a novel...
Hackers Turn Velociraptor DFIR Tool Into Weapon in LockBit Ransomware Attacks
Oct 11, 2025Ravie LakshmananNetwork Security / Vulnerability Threat actors are abusing Velociraptor, an open-source digital forensics and incident response (DFIR)...
Ukraine sees surge in AI-Powered cyberattacks by Russia-linked Threat Actors
Ukraine sees surge in AI-Powered cyberattacks by Russia-linked Threat Actors Pierluigi Paganini October 10, 2025 Russia-linked actors use AI to...
Threat actors steal firewall configs, impacting all SonicWall Cloud Backup users
Threat actors steal firewall configs, impacting all SonicWall Cloud Backup users Pierluigi Paganini October 09, 2025 All SonicWall Cloud Backup...
Critical Exploit Lets Hackers Bypass Authentication in WordPress Service Finder Theme
Oct 09, 2025Ravie LakshmananVulnerability / Website Security Threat actors are actively exploiting a critical security flaw impacting the Service Finder...
Chinese Hackers Weaponize Open-Source Nezha Tool in New Attack Wave
Oct 08, 2025Ravie LakshmananMalware / Threat Intelligence Threat actors with suspected ties to China have turned a legitimate open-source monitoring...
Google Mandiant: Emails Sent to Corporate Execs Claiming Oracle Data Theft
Corporate executives at multiple organizations are receiving malicious emails from threat actors saying they are associated with the Cl0p ransomware...
Hackers Exploit Milesight Routers to Send Phishing SMS to European Users
Oct 01, 2025Ravie LakshmananVulnerability / Malware Unknown threat actors are abusing Milesight industrial cellular routers to send SMS messages as...
EvilAI Malware Masquerades as AI Tools to Infiltrate Global Organizations
Threat actors have been observed using seemingly legitimate artificial intelligence (AI) tools and software to sneakily slip malware for future...
Cisco ASA Firewall Zero-Day Exploits Deploy RayInitiator and LINE VIPER Malware
The U.K. National Cyber Security Centre (NCSC) has revealed that threat actors have exploited the recently disclosed security flaws impacting...
North Korean Hackers Use New AkdoorTea Backdoor to Target Global Crypto Developers
The North Korea-linked threat actors associated with the Contagious Interview campaign have been attributed to a previously undocumented backdoor called...
How threat actors breached a U.S. federal civilian agency by exploiting a GeoServer flaw
How threat actors breached a U.S. federal civilian agency by exploiting a GeoServer flaw Pierluigi Paganini September 24, 2025 US...
DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams
Threat actors with ties to the Democratic People's Republic of Korea (aka DPRK or North Korea) have been observed leveraging...
