GOLD SALEM tradecraft for deploying Warlock ransomware
In mid-August 2025, Counter Threat Unit™ (CTU) researchers identified the use of the legitimate Velociraptor digital forensics and incident response...
identified
CrowdStrike Identifies New China-Nexus Espionage Actor
Image: Adobe Stock A newly identified China-nexus cyber adversary, tracked by CrowdStrike as WARP PANDA, has emerged as one of...
MuddyWater: Snakes by the riverbank
ESET researchers have identified new MuddyWater activity primarily targeting organizations in Israel, with one confirmed target in Egypt. MuddyWater, also...
CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat
Nov 20, 2025The Hacker NewsOnline Fraud / Web Security CTM360 has identified a rapidly expanding WhatsApp account-hacking campaign targeting users...
Bridging the Remediation Gap: Introducing Pentera Resolve
From Detection to Resolution: Why the Gap Persists A critical vulnerability is identified in an exposed cloud asset. Within hours,...
npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels
Oct 14, 2025Ravie LakshmananMalware / Typosquatting Cybersecurity researchers have identified several malicious packages across npm, Python, and Ruby ecosystems that...
GhostRedirector poisons Windows servers: Backdoors with a side of Potatoes
ESET researchers have identified a new threat actor, whom we have named GhostRedirector, that compromised at least 65 Windows servers...
Data Sheet: LOCKBIT 3.0
LOCKBIT 3.0 is a well-known Ransomware Group that was initially recognized on December 9, 2022. Operating under different aliases and...
Role of Russian Infrastructure in Cybercrime Operations Linked to North Korea
Research Trends have detected various IP address ranges in Russia employed for cyber criminality in collaboration with North Korea. These...
PlayPraetor Reloaded: CTM360 Reveals a Play Disguised Party
Summary of the PlayPraetor Disguised Party Versions CTM360 has uncovered a significantly wider scope of the continuous Play Praetor initiative....
MALEVOLENT CASE 2.0 Botnet Attacks 1 Million Android Devices for Ad Fraud and Proxy Misuse
Four various malicious entities have been recognized as participating in a revised iteration of an extensive ad deception and residential...
Malicious Network 2.0 Botnet Impacts 1 Million Android Gadgets for Illicit Ad Activities and Proxy Misuse
Several threat agencies have been acknowledged as participants in an enhanced variation of a substantial ad exploitation and residential proxy...
Hackers Utilize Malicious npm Packages to Extract Solana Wallet Keys through Gmail SMTP
Security experts have discovered three groups of harmful packages within the npm and Python Package Index (PyPI) archive that possess...
North Korean Computer Specialist Deception Associated with 2016 Fundraising Swindle and Phony Websites
Information security analysts have uncovered connections in infrastructure between the North Korean cybercriminals involved in the deceptive computer specialist ploys...
This Holiday Season, Watch Out for These Cyber-Grinch Tricks Used to Scam Holiday Shoppers
McAfee threat researchers have identified several consumer brands and product categories most frequently used by cybercriminals to trick consumers into...
