APT28 Targets Ukrainian UKR-net Users in Long-Running Credential Phishing Campaign
Dec 17, 2025Ravie LakshmananEmail Security / Threat Intelligence The Russian state-sponsored threat actor known as APT28 has been attributed to...
StateSponsored
Iranian Hackers Launch ‘SpearSpecter’ Spy Operation on Defense & Government Targets
The Iranian state-sponsored threat actor known as APT42 has been observed targeting individuals and organizations that are of interest to...
Chinese Hackers Use Anthropic’s AI to Launch Automated Cyber Espionage Campaign
State-sponsored threat actors from China used artificial intelligence (AI) technology developed by Anthropic to orchestrate automated cyber attacks as part...
SonicWall Confirms State-Sponsored Hackers Behind September Cloud Backup Breach
Nov 06, 2025Ravie LakshmananIncident Response / Cloud Security SonicWall has formally implicated state-sponsored threat actors as behind the September security...
SonicWall blames state-sponsored hackers for September security breach
SonicWall blames state-sponsored hackers for September security breach Pierluigi Paganini November 05, 2025 Cybersecurity firm SonicWall attributed the September security...
Russia’s Coldriver Ramps Up Malware Development After LostKeys Exposure
Google threat researchers in May disclosed LostKeys, a malware used by the Russia state-sponsored cyber-espionage group Coldriver, which has...
Suspected Chinese Hackers Spent a Year-Plus Inside F5 Systems: Report
The Chinese state-sponsored threat actors believed to be behind the high-profile hack of F5’s corporate networks reportedly infiltrated the security...
Chinese Group Accused of Using Fake U.S. Rep. Email to Spy on Trade Talks
The Chinese state-sponsored group APT41 is accused of using a fake email impersonating a U.S. representative containing spyware and sent...
Russian APT28 Deploys “NotDoor” Outlook Backdoor Against Companies in NATO Countries
Sep 04, 2025Ravie LakshmananCybersecurity / Malware The Russian state-sponsored hacking group tracked as APT28 has been attributed to a new...
Russian APT28 Deploys “NotDoor” Outlook Backdoor Against Companies in NATO Countries
Sep 04, 2025Ravie LakshmananCybersecurity / Malware The Russian state-sponsored hacking group tracked as APT28 has been attributed to a new...
Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware
An Iranian state-sponsored threat group has been attributed to a long-term cyber intrusion aimed at a critical national infrastructure (CNI)...
BPFDoor’s Covert Manipulator Deployed Against Targets in Asia and the Middle East
Main Points BPFDoor functions as a government-backed backdoor intended for conducting cyberespionage operations. In our exploration of BPFDoor assaults, we unearthed...
Asian Telecom Compromised by Chinese Cybercriminals, Undetected for More than 4 Years
Reports from Sygnia, a renowned incident response organization, suggest that a prominent communications firm in Asia fell victim to a...
Unresolved Windows Security Vulnerability Exploited by 11 Nation-Backed Hackers Since 2017
Multiple unaddressed security weaknesses affecting Microsoft Windows have been leveraged by 11 state-backed actors from China, Iran, North Korea, and...
MAVInject.exe Usage by Chinese Cybercriminals to Bypass Detection in Specific Digital Assaults
Mustang Panda, a hacking group supported by the Chinese government, has been caught using an innovative method to outsmart detection...
