Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Campaigns

20 articles

GBHackers Campaigns Jun 1

Hackers Target Signal Users to Steal Backups in New Attack Wave

Hackers are abusing Signal’s in‑app messaging to trick users into giving up their backup recovery keys, allowing attackers to unlock years of supposedly priv...

T1566

GBHackers →

The Record Campaigns May 31

Afghan finance officials targeted by suspected Pakistani cyberespionage campaign

A suspected Pakistan-linked hacking group has targeted Afghanistan's Ministry of Finance and provincial government officials in a new cyberespionage campaign...

The Record →

Security Affairs Campaigns May 31

Security Affairs newsletter Round 579 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box.

T1566

Security Affairs →

HackRead Campaigns May 30

Fake Anthropic Sites Deliver Fileless Infostealer to Claude Code Users

Fake Anthropic websites are being used to target Claude Code users with a fileless infostealer campaign that steals browser credentials and evades detection.

HackRead →

Security Affairs Campaigns May 30

Signal Phishing Campaign Targets Journalists and Activists to Steal Backup Recovery Keys

Attackers are texting Signal users posing as Support, asking for backup recovery keys. Once obtained, they can decrypt the entire message history, not just f...

T1566

Security Affairs →

GBHackers Campaigns Intel May 30

SideCopy Deploys Persistent XenoRAT Against Afghanistan Finance Ministry

Pakistan-linked threat actor SideCopy has launched a highly targeted spear-phishing campaign against Afghanistan’s Ministry of Finance (MoF). The operation s...

T1566

GBHackers →

Microsoft Security Blog Campaigns Microsoft May 30

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details...

T1195 T1592

Microsoft Security Blog →

Security Affairs Campaigns May 29

Meet GREYVIBE, the Russia-Linked Hacking Group Using AI to Target Ukraine and Still Making Rookie Mistakes

GREYVIBE, a Russia-linked group active since 2025, targets Ukraine with AI-assisted malware and five attack chains. Researchers say it’s part spy op, part cr...

Security Affairs →

SC Media Campaigns Apple May 29

New threat actor JINX-0164 targets crypto firms with macOS malware

The campaign, active since mid-2025, uses recruitment-themed social engineering to lure developers into downloading a Python-based infostealer and remote acc...

T1204

SC Media →

GBHackers Campaigns Apple May 29

JINX-0164 Uses LinkedIn Lures to Deploy Custom macOS Malware

A newly identified threat actor tracked as JINX-0164 is targeting cryptocurrency organizations through sophisticated LinkedIn-based social engineering campai...

T1078 T1204

GBHackers →

The Hacker News Campaigns May 29

New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks

A previously undocumented threat actor dubbed GREYVIBE has been attributed to ongoing and persistent attacks targeting Ukraine and Ukraine-related entities s...

The Hacker News →

GBHackers Campaigns May 29

Trusted Dev Tools Abused to Steal Code and Secrets

Attackers are increasingly weaponizing trusted developer tools to infiltrate software supply chains, with CISA warning of multiple ongoing campaigns targetin...

T1195

GBHackers →

Help Net Security Campaigns Adobe May 29

LinkedIn-themed phishing abuses Adobe’s A/B testing platform

A newly documented phishing campaign is targeting professionals with fake LinkedIn business emails and abusing a trusted service operated by Adobe. The attac...

T1566

Help Net Security →

GBHackers Campaigns Adobe WordPress May 29

Fake Adobe Document Cloud Pages Spread ScreenConnect Malware

Hackers are actively exploiting trust in Adobe Document Cloud by using fake delivery pages to install remote access malware. The campaign leverages a sophist...

T1566

GBHackers →

Information Security Buzz Campaigns May 29

Threat Actors Deploy Tiflux RMM for Persistent Remote Access

Threat actors are abusing legitimate RMM tools as a means of creating persistence inside victims’ systems, using the Tiflux RMM tool. Tiflux is a reputable B...

Information Security Buzz →

Microsoft Security Blog Campaigns Microsoft May 29

Typosquatted npm packages used to steal cloud and CI/CD secrets

The Mini Shai-Hulud campaign used malicious npm packages to target cloud and CI/CD credentials across developer environments. This report details the attack ...

Microsoft Security Blog →

Security Affairs Campaigns Microsoft May 28

Resecurity Supports Microsoft DCU in Disrupting Fox Tempest ’s Cybercriminal Code-Signing Ecosystem

Microsoft and Resecurity disrupted Fox Tempest, a malware-signing service that used fake Microsoft certificates to make malware look legitimate. Resecurity s...

Security Affairs →

CSO Online Campaigns May 28

GlassWorm falls, but the repo problem is far from solved

Taking down a sprawling malware operation once signaled progress in securing the open-source ecosystem. Now, it barely registers.

T1592

CSO Online →

CISA Advisories Campaigns GitHub May 28

Supply Chain Compromises Impact Nx Console and GitHub Repositories

CISA is prioritizing the response to multiple emerging software supply chain intrusion campaigns targeting developer ecosystems Continuous Integration/Contin...

T1195

CISA Advisories →

Infosecurity Magazine Campaigns Apple May 28

New Threat Actor Jinx-0164 Targets Crypto Developers on macOS

New actor Jinx-0164 hit crypto developers with fake recruiter lures and macOS malware

Infosecurity Magazine →

«Previous page 1 ... 16 17 18 19 20 ... 31 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA