The suspected India-linked threat group targets governments, telecom, and critical infrastructure using spear-phishing, old vulnerabilities, and rapidly rotating infrastructure to maintain persistent access.
In an unsuccessful phishing attack, threat actors leveraged trusted brands and domains to try to redirect a C-suite executive at Outpost24 to give up his credentials.
State-sponsored attackers joined by Chinese snoops and hackers-for-hire in latest round of economic penalties The Council of the European Union sanctioned Emennet Pasargad on Monday, a company used as a front for a series of Iranian cyberattacks.…
Some of these campaigns are linked to Darcula, a Chinese-language phishing-as-a-service platform
A social engineering campaign impersonating PayPal and Amazon uses customer support interactions to acquire sensitive info.
Signal, the encrypted messaging app trusted by security-savvy users around the world, has confirmed that hackers have managed to takeover accounts - with government officials and journalists among those being targeted. Read more in my article on the Hot for Security blog.
Elon Musk's social media site says it suspended 800 million accounts in a year for spam and manipulation - but with state-backed campaigns still flooding the platform, the real question is how many fake accounts remain. Read more in my article on the Hot for Security blog.
Ericsson data breach affects 15k employees/customers after third-party service provider compromise
Almost a quarter of the zero days detected by Google in 2025 targeted security and networking appliances
Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction
A global operation has resulted in the takedown of popular cybercrime forum LeakBase
Ariomex database reveals potential sanctions evasion and capital transfers tied to Iranian actors
Black Kite reveals 26,000 unnamed corporate victims linked to 136 third-party breaches
Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack
Google Chrome initiates quantum-resistant measures via Merkle Tree Certificates to secure HTTPS
The security researchers from Zscaler ThreatLabz have also discovered five new tools deployed by the North Korean hacking group
2025 saw 32M phishing emails, with identity threats surpassing vulnerabilities
Malicious NuGet package mimicking Stripe's library targeted developers
Phishing attack mimicking Bitpanda targets users, harvesting credentials and personal information
CrowdStrike Global Threat Report warns how adversaries are leveraging AI to make campaigns more efficient and more effective