UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors
Ravie LakshmananFeb 13, 2026Cloud Security / Cyber Espionage A previously unknown threat…
China-Linked UNC3886 Targets Singapore Telecom Sector in Cyber Espionage Campaign
Ravie LakshmananFeb 09, 2026Cyber Espionage / Virtualization The Cyber Security Agency (CSA)…
Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities
Ravie LakshmananFeb 06, 2026Cyber Espionage / Malware A previously undocumented cyber espionage…
Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor
Dec 30, 2026Ravie LakshmananMalware / Cyber Espionage The Chinese hacking group known…
Hackers exploit Cisco SNMP flaw to deploy rootkit on switches
Threat actors exploited a recently patched remote code execution vulnerability (CVE-2025-20352) in…
Soco404 and Koske Malware Target Cloud Services with Cross-Platform Cryptomining Attacks
Jul 25, 2025Ravie LakshmananMalware / Cloud Security Threat hunters have disclosed two…
Threat Actor Mimo Targets Magento and Docker to Deploy Crypto Miners and Proxyware
Jul 23, 2025Ravie LakshmananMalware / Cryptocurrency The threat actor behind the exploitation…
UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit
A threat activity cluster has been observed targeting fully-patched end-of-life SonicWall Secure…
Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms
Jul 03, 2025Ravie LakshmananThreat Intelligence / Vulnerability The French cybersecurity agency on…