Lucene search
K

15 matches found

The Hacker News
The Hacker News
added 2025/11/14 2:40 p.m.9 views

Iranian Hackers Launch 'SpearSpecter' Spy Operation on Defense & Government Targets

The Iranian state-sponsored threat actor known as APT42 has been observed targeting individuals and organizations that are of interest to the Islamic Revolutionary Guard Corps IRGC as part of a new espionage-focused campaign. The activity, detected in early September 2025 and assessed to be...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/14 1:24 p.m.18 views

Phishing Campaigns Use Real-Time Checks to Validate Victim Emails Before Credential Theft

Cybersecurity researchers are calling attention to a new type of credential phishing scheme that ensures that the stolen information is associated with valid online accounts. The technique has been codenamed precision-validating phishing by Cofense, which it said employs real-time email validatio...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2025/02/06 2:34 p.m.17 views

Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking

Bogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT. The malware, first detected in 2023, is attributed to a threat actor tracked as Silver Fox, with prior attack campaigns primarily targeting Chinese-speaking...

7.5AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2024/01/31 12:0 a.m.22 views

Pawn Storm Uses Brute Force and Stealth Against High-Value Targets

Based on our estimates, from approximately April 2022 until November 2023, Pawn Storm attempted to launch NTLMv2 hash relay attacks through different methods, with huge peaks in the number of targets and variations in the government departments that it targeted...

7.3AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2024/01/17 5:0 p.m.21 views

New TTPs observed in Mint Sandstorm campaign targeting high-profile individuals at universities and research orgs

Since November 2023, Microsoft has observed a distinct subset of Mint Sandstorm PHOSPHORUS targeting high-profile individuals working on Middle Eastern affairs at universities and research organizations in Belgium, France, Gaza, Israel, the United Kingdom, and the United States. In this campaign,...

7.2AI score
Exploits0
Krebs on Security
Krebs on Security
added 2023/12/19 10:49 p.m.20 views

BlackCat Ransomware Raises Ante After FBI Disruption

The U.S. Federal Bureau of Investigation FBI disclosed today that it infiltrated the worlds second most prolific ransomware gang, a Russia-based criminal group known as ALPHV and BlackCat. The FBI said it seized the gangs darknet website, and released a decryption tool that hundreds of victim...

7.3AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/09/14 4:30 p.m.299 views

Peach Sandstorm password spray campaigns enable intelligence collection at high-value targets

Since February 2023, Microsoft has observed password spray activity against thousands of organizations carried out by an actor we track as Peach Sandstorm HOLMIUM. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and...

7.5CVSS10.3AI score0.99999EPSS
Exploits90
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/04/18 3:0 p.m.49 views

Nation-state threat actor Mint Sandstorm refines tradecraft to attack high-value targets

Over the past several months, Microsoft has observed a mature subgroup of Mint Sandstorm, an Iranian nation-state actor previously tracked as PHOSPHORUS, refining its tactics, techniques, and procedures TTPs. Specifically, this subset has rapidly weaponized N-day vulnerabilities in common...

9.3CVSS9.9AI score0.99999EPSS
Exploits373
Microsoft Secure
Microsoft Secure
added 2023/04/18 3:0 p.m.55 views

Nation-state threat actor Mint Sandstorm refines tradecraft to attack high-value targets

Over the past several months, Microsoft has observed a mature subgroup of Mint Sandstorm, an Iranian nation-state actor previously tracked as PHOSPHORUS, refining its tactics, techniques, and procedures TTPs. Specifically, this subset has rapidly weaponized N-day vulnerabilities in common...

9.3CVSS9.9AI score0.99999EPSS
Exploits373
The Hacker News
The Hacker News
added 2023/04/13 4:40 p.m.33 views

RTM Locker: Emerging Cybercrime Group Targeting Businesses with Ransomware

Cybersecurity researchers have detailed the tactics of a "rising" cybercriminal gang called "Read The Manual" RTM Locker that functions as a private ransomware-as-a-service RaaS provider and carries out opportunistic attacks to generate illicit profit. "The 'Read The Manual' Locker gang uses...

7.1AI score
Exploits0
hivepro
hivepro
added 2022/07/29 1:12 p.m.17 views

APT37 employs Konni malware to target high-level organizations

Threat Level Actor Report For a detailed advisory, download the pdf file here Summary The Konni remote access trojan, which is widely used malware by the APT37, is used in the attack campaign to take advantage of high-value targets from countries like the Czech Republic, Poland, and many others...

3.4AI score
Exploits0
The Hacker News
The Hacker News
added 2022/04/18 12:58 p.m.29 views

Researchers Share In-Depth Analysis of PYSA Ransomware Group

An 18-month-long analysis of the PYSA ransomware operation has revealed that the cybercrime cartel followed a five-stage software development cycle from August 2020, with the malware authors prioritizing features to improve the efficiency of its workflows. This included a user-friendly tool like ...

6.8AI score
Exploits0
Trellix
Trellix
added 2019/11/08 12:0 a.m.12 views

Spanish MSSP Targeted by BitPaymer Ransomware

ARCHIVED STORY Spanish MSSP Targeted by BitPaymer Ransomware By ATR Operational Intelligence Team · November 08, 2019 Co-authored by Marc RiveroLopez Initial Discovery This week the news hit that several companies in Spain were hit by a ransomware attack. Ransomware attacks themselves are not new...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2014/01/20 10:15 a.m.14 views

EFF Activists, Journalists Hit By Targeted Malware Attack

Phishing and malware attacks are among the more democratic and populist threats on the Internet. You don’t have to stand in the crowd in order to be targeted; the attackers will get to you sooner or later. But while most malware campaigns are aimed at the masses, attackers often save their best...

1.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2013/01/14 8:29 p.m.34 views

Out-of-Band IE Patch Released as More Sites Attacked

Internet Explorer users, exposed to a zero-day vulnerability in the browser and a faulty temporary Fix It from Microsoft, finally got some relief today when the company, as promised, released an out-of-band patch. Meanwhile, a handful of new telco, manufacturing and human rights sites have been...

9.3CVSS0.1AI score0.78823EPSS
Exploits12References7
Rows per page
Query Builder