Sign in Subscribe

Latest

Tropic Trooper APT Expands into Middle Eastern Targets, Leveraging China Chopper Web Shell

Tropic Trooper APT Expands into Middle Eastern Targets, Leveraging China Chopper Web Shell

Traditionally known for targeting Taiwan, the Philippines, and Hong Kong entities. This recent campaign, however, represents a strategic expansion, as Tropic Trooper shifted its focus toward government entities in the Middle East, particularly those involved in human rights studies.

Critical Zero-Day Vulnerability in Popular VPN Service Allows Remote Code Execution

Critical Zero-Day Vulnerability in Popular VPN Service Allows Remote Code Execution

The vulnerability, CVE-2023-3420, was patched in the V8 engine in June 2023. However, the WebView component within WeChat was not updated, exposing millions of users to potential attacks.

TIDRONE Targets Military and Satellite Industries in Taiwan

TIDRONE Targets Military and Satellite Industries in Taiwan

A threat cluster we named TIDRONE, possibly linked to Chinese-speaking groups, has been actively targeting Taiwan's military-related industries, particularly drone manufacturers.

Russian Military Cyber Actors Target U.S. and Global Critical Infrastructure

Russian Military Cyber Actors Target U.S. and Global Critical Infrastructure

A joint cybersecurity advisory detailing Russian cyber actors affiliated with the General Staff Main Intelligence Directorate (GRU) Unit 29155 targeting critical infrastructure worldwide.

Predator Spyware Infrastructure Resurfaces After US Sanctions

Predator Spyware Infrastructure Resurfaces After US Sanctions

Insikt Group released a report revealing the return of Intellexa's Predator spyware infrastructure. Despite US government sanctions and a significant decline in activity following public exposure in 2023, Predator has resurfaced with modifications aimed at evading detection.

Banking Trojans: Mekotio and BBTok Ramp Up Phishing Scams in Latin America

Banking Trojans: Mekotio and BBTok Ramp Up Phishing Scams in Latin America

Mekotio and BBTok. These malware variants, long known for targeting Latin American users, have adopted new tactics to evade detection and exploit victims.

CISA Adds Three Exploited Vulnerabilities to Known Catalog

CISA Adds Three Exploited Vulnerabilities to Known Catalog

These vulnerabilities, all of which have been actively exploited, include two related to Draytek VigorConnect devices and one affecting Kingsoft WPS Office.