advanced persistent threats

From Cyber Security News – New Sophisticated Malware CoffeeLoader Bypasses Endpoint Security to Deploy Rhadamanthys Shellcode

Cybersecurity researchers have uncovered a sophisticated new malware strain targeting macOS systems, dubbed “CoffeeLoader,” which employs advanced techniques to bypass endpoint security solutions and deliver Rhadamanthys shellcode payloads. The malware…

shaikh Saqib March 27, 2025

News

From Dark Reading – Meet the Low-Key Access Broker Supercharging Russian State Cybercrime

Raspberry Robin breaks into organizations and sells access to Russian threat actors, including the military cyber unit behind attempted coups, assassinations, and influence operations throughout Europe. Read More

shaikh Saqib March 24, 2025

News

From The Hacker News – China-Linked APT Aquatic Panda: 10-Month Campaign, 7 Global Targets, 5 Malware Families

The China-linked advanced persistent threat (APT) group. known as Aquatic Panda has been linked to a "global espionage campaign" that took place in 2022 targeting seven organizations. These entities include governments, catholic charities, non-governmental organizations (NGOs), and think tanks across Taiwan, Hungary, Turkey, Thailand, France, and the United States. The activity, which took place

shaikh Saqib March 21, 2025

News

From Dark Reading – Nation-State Groups Abuse Microsoft Windows Shortcut Exploit

Trend Micro uncovered a method that nation-state threat actors are using to target victims via the Windows .Ink shortcut file extension. Read More

shaikh Saqib March 20, 2025

News

From Cyber Security News – Lazarus Hackers Exploiting IIS Servers to Deploy ASP-based Web Shells

Researchers have identified a series of sophisticated attacks by the notorious Lazarus group targeting South Korean web servers. The threat actors have been breaching IIS servers to deploy ASP-based web…

shaikh Saqib March 14, 2025

News

From Cyber Security News – Telecom Giant NTT Admits Hackers Accessed 18,000 Corporate Customers Data

Japanese telecommunications conglomerate NTT Communications (NTT Com) disclosed this week that threat actors infiltrated its internal systems in February, compromising sensitive data belonging to 17,891 corporate clients globally. The breach,…

shaikh Saqib March 12, 2025

News

From Dark Reading – Whopping Number of Microsoft Zero-Days Under Attack

The number of zero-day vulnerabilities getting patched in Microsoft's March update is the company's second-largest ever. Read More

shaikh Saqib March 12, 2025

News

From The Hacker News – Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks

The threat actor known as Blind Eagle has been linked to a series of ongoing campaigns targeting Colombian institutions and government entities since November 2024. "The monitored campaigns targeted Colombian judicial institutions and other government or private organizations, with high infection rates," Check Point said in a new analysis. "More than 1,600 victims were affected during one of

shaikh Saqib March 11, 2025

News

From The Hacker News – Steganography Explained: How XWorm Hides Inside Images

Inside the most innocent-looking image, a breathtaking landscape, or a funny meme, something dangerous could be hiding, waiting for its moment to strike. No strange file names. No antivirus warnings. Just a harmless picture, secretly concealing a payload that can steal data, execute malware, and take over your system without a trace. This is steganography, a cybercriminal’s secret weapon for

shaikh Saqib March 11, 2025

News

From Cyber Security News – EncryptHub A Multi-Stage Malware Compromised 600 Organizations

A sophisticated cybercriminal group known as EncryptHub has successfully compromised approximately 600 organizations through a multi-stage malware campaign. The threat actor exploited operational security mistakes, inadvertently exposing critical elements of…

shaikh Saqib March 11, 2025

News

From Cyber Security News – Hackers Using Advanced Social Engineering Techniques With Phishing Attacks

Cybercriminals are advancing beyond rudimentary phishing attempts, adopting sophisticated social engineering strategies that build relationships with targets before delivering malicious payloads. ESET’s APT Activity Report shows that the North Korea-aligned…

shaikh Saqib March 10, 2025

Vulnerabilities

From Cybersecurity Help – US сharges APT27 and i-Soon hackers with cyberattacks on entities across globe

The US authorities are offering a reward of up to $10 million for information leading to the capture and conviction of the suspects. Read More

shaikh Saqib March 6, 2025

News

From Cyber Security News – Hackers Leveraging Business Relationship To Attack Arab Emirates Aviation Sector

Security researchers at Proofpoint have uncovered a sophisticated cyber espionage campaign targeting aviation and satellite communications organizations in the United Arab Emirates. The campaign, attributed to a threat actor tracked…

shaikh Saqib March 5, 2025

News

From Security Week – Black Basta Leak Offers Glimpse Into Group’s Inner Workings

[[{"value":"A massive hoard of internal chats has been leaked from Black Basta, rivalling the Conti leaks of late February 2022. The post Black Basta Leak Offers Glimpse Into Group’s Inner…

shaikh Saqib March 3, 2025

News

From Dark Reading – Top 10 Most Probable Ways a Company Can Be Hacked

How to win the battle with root cause analysis and a data-driven approach. Read More

shaikh Saqib February 28, 2025