Google GTIG: 90 zero-day flaws exploited in 2025 as enterprise targets grow
Google GTIG: 90 zero-day flaws exploited in 2025 as enterprise targets grow Pierluigi Paganini March 06, 2026 Google’s GTIG reports...
APT
Russian APT targets Ukraine with BadPaw and MeowMeow malware
Russian APT targets Ukraine with BadPaw and MeowMeow malware Pierluigi Paganini March 05, 2026 Researchers uncovered a Russian campaign targeting...
From phishing to Google Drive C2: Silver Dragon expands APT41 playbook
From phishing to Google Drive C2: Silver Dragon expands APT41 playbook Pierluigi Paganini March 04, 2026 APT group Silver Dragon,...
Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity
Middle east crisis prompts UK NCSC warning on potential Iranian cyber activity Pierluigi Paganini March 02, 2026 UK’s NCSC warns...
Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch
Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch Pierluigi Paganini March 02, 2026 Russia-linked APT28 reportedly exploited MSHTML zero-day CVE-2026-21513...
APT37 combines cloud storage and USB implants to infiltrate air-gapped systems
APT37 combines cloud storage and USB implants to infiltrate air-gapped systems Pierluigi Paganini March 02, 2026 North Korea-linked APT 37...
UAT-10027 campaign hits U.S. education and healthcare with stealthy Dohdoor backdoor
UAT-10027 campaign hits U.S. education and healthcare with stealthy Dohdoor backdoor Pierluigi Paganini February 26, 2026 UAT-10027 campaign is targeting...
How to understand and avoid Advanced Persistent Threats
By definition, an advanced persistent threat (APT) is a prolonged, targeted attack on a specific victim with the intention to compromise...
Google GTIG disrupted China-linked APT UNC2814 halting attacks on 53 orgs in 42 countries
Google GTIG disrupted China-linked APT UNC2814 halting attacks on 53 orgs in 42 countries Pierluigi Paganini February 26, 2026 Google...
Lazarus APT group deployed Medusa Ransomware against Middle East target
Lazarus APT group deployed Medusa Ransomware against Middle East target Pierluigi Paganini February 25, 2026 North Korea’s Lazarus Group used...
Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration
Operation MacroMaze: APT28 exploits webhooks for covert data exfiltration Pierluigi Paganini February 24, 2026 Russia-linked APT28 targeted European entities with...
Notepad++ patches flaw used to hijack update system
Notepad++ patches flaw used to hijack update system Pierluigi Paganini February 18, 2026 Notepad++ patched a vulnerability that attackers used...
China-linked APT weaponized Dell RecoverPoint zero-day since 2024
China-linked APT weaponized Dell RecoverPoint zero-day since 2024 Pierluigi Paganini February 18, 2026 A suspected Chinese state-linked group exploited a...
Malicious npm and PyPI packages linked to Lazarus APT fake recruiter campaign
Malicious npm and PyPI packages Llinked to Lazarus APT fake recruiter campaign Pierluigi Paganini February 15, 2026 Researchers found malicious...
Suspected Russian hackers deploy CANFAIL malware against Ukraine
Suspected Russian hackers deploy CANFAIL malware against Ukraine Pierluigi Paganini February 14, 2026 A new alleged Russia-linked APT group targeted...
