Secureworks Counter Threat Unit (CTU) researchers have identified significant evolutions in the business models of two notorious ransomware operations: DragonForce and Anubis. Despite the global crackdown on cybercrime by law enforcement agencies, these ransomware groups have demonstrated remarkable adaptability by rolling out sophisticated affiliate programs designed to broaden their reach and maximize profits. DragonForce Adopts […]
A sophisticated phishing and scam campaign dubbed “Power Parasites” has been actively targeting the global energy sector and various leading international brands, Silent Push Threat Analysts confirmed this week. The operation exploits the branding and digital presences of major energy firms including Siemens Energy, Schneider Electric, EDF Energy, Repsol S.A., and Suncor Energy alongside other […]
A persistent wave of SMS phishing commonly known as smishing campaigns has surged, with threat actors registering more than 91,500 root domains designed to deceive users into revealing sensitive information or clicking on malicious links. According to new analysis from Unit 42 researchers Reethika Ramesh, Zhanhao Chen, Shehroze Farooqi, Chi-Wei Liu, Moe Ghasemisharif, and Daiping […]
The Dutch Defence Ministry has confirmed that the Netherlands’ critical infrastructure, democratic institutions, and North Sea installations have become recent targets of coordinated Russian cyber operations. According to officials, these latest attacks are not isolated incidents but rather part of a broader, long-term campaign intended to destabilize Dutch society and undermine national security across Europe. […]
North Korea’s state-sponsored cyber threat landscape continues to evolve, as recent research from Silent Push Threat Analysts has revealed advanced persistent threat (APT) activity targeting job-seekers in the cryptocurrency sector. Operating under the codename “Contagious Interview” an offshoot of the notorious Lazarus Group North Korean actors have established elaborate fronts masquerading as legitimate crypto consulting […]
North Korean threat actors are leveraging generative artificial intelligence (GenAI) technologies to systematically infiltrate remote technical roles worldwide, according to recent findings from Okta Threat Intelligence. These so-called “DPRK IT Worker” or “Wagemole” campaigns utilize GenAI at multiple stages, from constructing convincing digital personas for job applications to maintaining active employment under false pretenses, all […]
Organizations across Thailand are facing an unprecedented escalation of ransomware attacks, driven by both financially motivated cybercriminals and state-sponsored advanced persistent threat (APT) groups. Recent threat intelligence analyses highlight a sharp increase in campaigns targeting high-value sectors amid the nation’s rapid digital expansion and strategic geopolitical positioning within the ASEAN region. Surge in Cyber Campaigns […]
The Patchstack security team has identified a large-scale, sophisticated phishing campaign targeting WooCommerce users with fake security alerts. Designed to closely mimic official WooCommerce communication, this campaign employs deceptive email and phishing techniques, urging recipients to install a fraudulent security “patch” for a fictitious vulnerability. This marks a shift in tactics from previously reported attacks […]
In an advancement for browser security, Google Chrome’s latest protection mechanism, MiraclePtr, has effectively neutralized two newly discovered use-after-free (UAF) vulnerabilities that previously posed a critical risk for sandbox escapes. The vulnerabilities, identified by SSD Labs Korea, targeted the browser process—a frequent vector for attackers seeking to break out of Chrome’s security sandbox and execute […]
A new threat is shaking up the cybersecurity landscape: SessionShark, a phishing-as-a-service (PhaaS) toolkit designed to bypass Microsoft Office 365’s multi-factor authentication (MFA) protections. Recently uncovered by security researchers, SessionShark is being openly marketed on cybercrime forums, brazenly advertised as an “educational” tool while boasting a suite of features that enable attackers to hijack accounts […]
