Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Campaigns

20 articles

GBHackers Campaigns Oracle Jun 19

SmartApeSG Hackers Abuse Okendo Reviews Widget in E-Commerce Supply Chain Attack

A supply-chain style compromise in the Okendo Reviews widget that enabled the SmartApeSG threat actor to deliver staged JavaScript loaders across a wide e-co...

T1195

GBHackers →

SecurityWeek Campaigns WordPress Jun 19

15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown 

Law enforcement and private partners took down 106 SocGholish C&C servers and domains as part of Operation Endgame. The post 15,000 WordPress Websites Cleane...

T1071

SecurityWeek →

GBHackers Campaigns Jun 19

Authorities Seize 106 Servers and 101 Domains in Major SocGholish Malware Takedown

International law enforcement agencies have successfully seized 106 servers and 101 domains as part of a coordinated global effort against the SocGholish mal...

GBHackers →

Recorded Future Campaigns Fortinet Jun 19

FortiBleed Campaign Exposing Credentials for 73,932 FortiGate Systems

A dataset containing valid administrative and VPN credentials for tens of thousands of Fortinet FortiGate firewalls, Recorded Future recommends organizations...

Recorded Future →

SC Media Campaigns Jun 18

Malware campaign uses VirusTotal manipulation, legitimate news sites to gain reputation

The clipboard hijacker campaign also uses “ghost networks” on social media to boost engagement.

SC Media →

Security Affairs Campaigns Microsoft Intel Jun 18

Tor-Based Clipper Malware Targets Wallet Seed Phrases

USB .lnk malware steals crypto via clipboard hijack, replaces wallet addresses, steals seed phrases, and screenshots.

Security Affairs →

Help Net Security Campaigns Jun 18

Law enforcement hits SocGholish: 106 servers down, 15,000 sites cleaned

SocGholish, an operation that’s been delivering malware to users via fake software updates, has suffered a major blow: the international law enforcement coal...

Help Net Security →

SC Media Campaigns Jun 18

Fake Boots emails target millions in large phishing campaign

The campaign, involving nearly 8.9 million email addresses and linked to Romanian threat actors, utilized a compromised Bolivian government website to host t...

T1566

SC Media →

CSO Online Campaigns Google GitLab Jun 18

Attackers abuse Google Ads, GitLab, and Claude to deliver malware

Threat actors are abusing trusted platforms, including Google Ads, GitLab pages, and Claude’s shared chat feature, to trick users into executing malicious co...

T1204

CSO Online →

GBHackers Campaigns GitLab Jun 18

Dropping Elephant Hackers Use China-Themed Loader Chain to Deploy In-Memory RAT

A sophisticated malvertising and social-engineering campaign that pivoted from weaponized GitLab Pages to abusing claude.ai’s shared chat feature, enabling o...

T1189

GBHackers →

Infosecurity Magazine Campaigns Fortinet Ivanti Jun 18

LATAM Infrastructure Hit by Fortinet and Ivanti Exploits

CloudSEK maps Operation Escaneo, a campaign hitting Latin American infrastructure via perimeter bugs

Infosecurity Magazine →

CSO Online Campaigns Fortinet Jun 18

FortiBleed campaign exposes 75,000 Fortinet firewalls worldwide

A massive credential-compromise campaign dubbed “Fortibleed” has been found to expose tens of thousands of Fortinet devices worldwide, with researchers warni...

CSO Online →

GBHackers Campaigns Jun 18

Modified OpenSSH Binaries Let Velvet Ant Steal Passwords, Log Commands, and Hide Activity

A long-running, stealthy campaign attributed to the China-nexus actor tracked as Velvet Ant has been found to include deeply engineered backdoors in the auth...

T1041

GBHackers →

GBHackers Campaigns Jun 18

Financially Motivated Hackers Turn Legitimate IT Tools Into Remote Access Payloads

A novel evolution of LLMjacking: a threat actor leveraging a publicly exposed Ollama model server as the reasoning engine for an automated, multi-stage offen...

GBHackers →

Infosecurity Magazine Campaigns Jun 18

Hostile States Behind 75% of Cyber-Attacks on UK Critical Infrastructure, NCSC Warns

Richard Horne, the NCSC CEO, said three-quarters of cyber-attacks targeting UK critical infrastructure came from nation-state actors

Infosecurity Magazine →

GBHackers Campaigns Zscaler Jun 18

AI-Generated ClickFix Campaign Delivers SmartRAT Banking Trojan via Fake Brazilian Bank Website

Multiple instances of typosquatting domains hosting malicious content generated with AI-powered website creation tools. One striking campaign combined an AI-...

T1195

GBHackers →

Help Net Security Campaigns Red Hat GitHub Jun 18

How security teams are getting credential visibility into developer endpoints

As we noted in our earlier analysis, attackers already know secrets are on your developers’ machines, the only question is whether security teams do. The sup...

T1195 1 IOC

Help Net Security →

GBHackers Campaigns WordPress Jun 18

Hackers Use AI-Generated YouTube Narrators to Promote Crypto Clipper Malware

A sophisticated social‑engineering campaign is leveraging AI‑generated YouTube narrators, ghost accounts across multiple platforms, and manipulated reputatio...

T1566

GBHackers →

Microsoft Security Blog Campaigns Microsoft Intel Jun 17

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, Tor-based communications, and wor...

Microsoft Security Blog →

The Hacker News Campaigns Check Point GitHub WordPress Jun 17

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments

An unknown threat actor has been observed leveraging paid or promoted posts on legitimate news websites to drum up buzz for their warez, according to new fin...

T1566

The Hacker News →

«Previous page 1 ... 8 9 10 11 12 ... 31 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA