Nation-State
Sweden is accusing Iran of hacking SMS service and sending out thousands of text messages calling for revenge over Quran burnings.
Hi, what are you looking for?
Russian military intelligence hackers intensify targeting of Western logistics and technology companies moving supplies into Ukraine.
Sweden is accusing Iran of hacking SMS service and sending out thousands of text messages calling for revenge over Quran burnings.
Iranian state-sponsored threat actor UNC1860 is operating as an initial access provider to high-profile networks in the Middle East.
Mandiant shines the spotlight on the growing infiltration of US and Western companies by North Korean fake IT workers.
Iranian hackers sought to interest President Joe Biden’s campaign in information stolen from rival Donald Trump’s campaign.
The US government has announced the disruption of Raptor Train, a Flax Typhoon botnet powered by hacked consumer devices.
Black Lotus Labs estimates that more than 200,000 routers, network-attached storage servers, and IP cameras have been ensnared in the botnet.
A North Korean group tracked as UNC2970 has been spotted trying to deliver new malware to people in the aerospace and energy industries.
Chinese national Song Wu allegedly sent spear-phishing emails to NASA, Air Force, Navy, Army, and FAA employees.
Apple said there's “too significant a risk” of exposing the anti-exploit work needed to fend off the very adversaries involved in the case.
A joint report from the Committees on China and Homeland Security warns of the security risks posed by Chinese cranes in US ports.
A Chinese-speaking threat actor tracked as Tidrone has been targeting military and satellite industries in Taiwan.
Recorded Future observes renewed Predator spyware activity on fresh infrastructure after a drop caused by US sanctions.
A secretive Russian military unit, previously linked to assassinations and destabilization in Europe, is blamed for destructive wiper malware attacks in Ukraine.
Google TAG publishes evidence showing identical or striking similarities between exploits used by Russia's APT29 and commercial spyware vendors.
Amidst Volt Typhoon zero-day exploitation, Censys finds hundreds of exposed servers presenting ripe attack surface for attackers.
A WPS Office zero-day vulnerability tracked as CVE-2024-7262 was exploited by South Korean hacker group APT-C-60.
Runa Sandvik is an inaugural member of CISA's Technical Advisory Council and the Aspen Institute's Global Cybersecurity Group, and a board member of the...
Malware hunters catch Chinese APT Volt Typhoon exploiting a zero-day in Versa Director servers used by ISPs and MSPs.
Meta said it discovered a network of Iranian hackers, who posed as tech support agents for companies including AOL, Microsoft, Yahoo and Google.
Hackers gained access to the switch using valid administrator credentials, and then ‘jailbroke’ from the application level into the OS level.