NSFOCUS in SAS 2025: Unveiling Secrets Behind Large-Scale DDoS Attacks on AI Platform and Social Media
SANTA CLARA, Calif., November 4, 2025 – The 18th Global Security Analyst Summit (SAS) concluded successfully in Khao Lak, Thailand. Focused...
APT
China-linked UNC6384 exploits Windows zero-day to spy on European diplomats
China-linked UNC6384 exploits Windows zero-day to spy on European diplomats Pierluigi Paganini November 01, 2025 A China-linked APT group UNC6384...
Russian hackers, likely linked to Sandworm, exploit legitimate tools against Ukrainian targets
Russian hackers, likely linked to Sandworm, exploit legitimate tools against Ukrainian targets Pierluigi Paganini October 29, 2025 Russian actors, likely...
Memento Labs, the ghost of Hacking Team, has returned — or maybe it was never gone at all.
Memento Labs, the ghost of Hacking Team, has returned — or maybe it was never gone at all. Pierluigi Paganini...
China-linked hackers exploit patched ToolShell flaw to breach Middle East telecom
China-linked hackers exploit patched ToolShell flaw to breach Middle East telecom Pierluigi Paganini October 24, 2025 China-based threat actors exploited...
Lazarus targets European defense firms in UAV-themed Operation DreamJob
Lazarus targets European defense firms in UAV-themed Operation DreamJob Pierluigi Paganini October 23, 2025 North Korean Lazarus hackers targeted 3...
PhantomCaptcha targets Ukraine relief groups with WebSocket RAT in October 2025
PhantomCaptcha targets Ukraine relief groups with WebSocket RAT in October 2025 Pierluigi Paganini October 22, 2025 PhantomCaptcha phishing campaign hit...
Russia-linked COLDRIVER speeds up malware evolution after LOSTKEYS exposure
Russia-linked COLDRIVER speeds up malware evolution after LOSTKEYS exposure Pierluigi Paganini October 22, 2025 Russia-linked COLDRIVER rapidly evolved its malware...
China-Linked Salt Typhoon breaches European Telecom via Citrix exploit
China-Linked Salt Typhoon breaches European Telecom via Citrix exploit Pierluigi Paganini October 21, 2025 China-linked Salt Typhoon hacked a European...
China-linked APT Jewelbug targets Russian IT provider in rare cross-nation cyberattack
China-linked APT Jewelbug targets Russian IT provider in rare cross-nation cyberattack Pierluigi Paganini October 16, 2025 China-linked APT Jewelbug targeted...
Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor
Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor Pierluigi Paganini October 15, 2025 China-linked cyberespionage...
Ukraine sees surge in AI-Powered cyberattacks by Russia-linked Threat Actors
Ukraine sees surge in AI-Powered cyberattacks by Russia-linked Threat Actors Pierluigi Paganini October 10, 2025 Russia-linked actors use AI to...
China-linked APT Phantom Taurus uses Net-Star malware in espionage campaigns against key sectors
China-linked APT Phantom Taurus uses Net-Star malware in espionage campaigns against key sectors Pierluigi Paganini October 02, 2025 China-linked APT...
UK NCSC warns that attackers exploited Cisco firewall zero-days to deploy RayInitiator and LINE VIPER malware
UK NCSC warns that attackers exploited Cisco firewall zero-days to deploy RayInitiator and LINE VIPER malware Pierluigi Paganini September 26,...
Google warns of Brickstorm backdoor targeting U.S. legal and tech sectors
Google warns of Brickstorm backdoor targeting U.S. legal and tech sectors Pierluigi Paganini September 26, 2025 China-linked actors used Brickstorm...