DoNot APT Hits European Ministry with New LoptikMod Malware

Trellix reveals how the India-linked DoNot APT group launched a sophisticated spear-phishing attack on a European foreign affairs…...

MirrorFace Targets Japan and Taiwan with ROAMINGMOUSE and Upgraded ANEL Malware

The nation-state threat actor known as MirrorFace has been observed deploying malware dubbed ROAMINGMOUSE as part of a cyber espionage campaign directed against government agencies and public institutions in Japan and Taiwan. The activity, detected by Trend Micro in March 2025, involved the use o...

Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading Techniques

Thai government officials have emerged as the target of a new campaign that leverages a technique called DLL side-loading to deliver a previously undocumented backdoor dubbed Yokai. "The target of the threat actors were Thailand officials based on the nature of the lures," Nikhil Hegde, senior...

The vulnerability of the Microsoft App Installer installer, related to the lack of mechanisms for encoding or shielding output data, allows attackers to perform spoofing attacks.

The vulnerability of the Microsoft App Installer relates to the lack of mechanisms for encoding or shielding output data. Exploiting this vulnerability allows attackers to carry out spear-phishing attacks using a specially created malware package...

Using USB Modems to Phish and Send Malicious SMS Messages

Some USB modems can be leveraged to send malicious SMS messages and even carry out spear-phishing attacks – sometimes in conjunction with each other – thanks to a cross-site request forgery vulnerability present in the device’s web interfaces. According to Swedish security researcher Andreas Lind...

Israeli Defense computer hacked in Spear Phishing Attack

Hackers broke into an Israeli defense ministry computer via an email attachment tainted with malicious software. Reuters reported Israeli Defense is the latest illustrious victim of the Spear Phishing Attack, and hackers penetrated into an Israeli defense ministry computer using a malicious email...

Japanese word processor 'Ichitaro' zero-day attack discovered in the wild

Japanese most popular word processing software 'Ichitaro' and Multiple Products are vulnerable to a zero day Remote Code Execution Flaw Vulnerability, allowing the execution of arbitrary code to compromise a user's system. According to assigned CVE-2013-5990, malicious attacker is able to gain...

How the Syrian Electronic Army Hacked the Onion

A pro-Syrian regime hacker collective known as the Syrian Electronic Army SEA recently compromised the Twitter, Google Apps and other accounts belonging to The Onion, a long-running satirical news publication in the U.S. Like The New York Times before it, The Onion published a fascinating...

Forensic FOCA - Power of Metadata in digital forensics

Forensic FOCA - Power of Metadata in digital forensics Most of the e ort in today's digital forensics community lies in the retrieval and analysis of existing information from computing systems. Metadata is data about data. Metadata plays a number of important roles in computer forensics. It can...

Fake Facebook Profile For NATO Senior Commander Used To Phish Senior Brass

A fake Facebook profile for NATO Senior Commander James Stavridis, a US Navy Admiral, was used to trick senior officers in both the U.S. and British military to becoming friends. The spear phishing attack is of unknown origin and is believed to have divulged a wide range of personal information o...