Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Campaigns

20 articles

Help Net Security Campaigns May 28

Oil shipments, drone makers, and a poisoned code library targeted in recent APT campaigns

Geopolitical pressure drove much of the state-sponsored cyber activity recorded between October 2025 and March 2026, according to ESET’s latest APT Activity ...

Help Net Security →

ESET Research Campaigns May 28

ESET APT Activity Report Q4 2025–Q1 2026

An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q4 2025 and Q1 2026

ESET Research →

GBHackers Campaigns May 28

SBI Warns Fake YONO Deactivation Message Scam

India’s largest public sector bank, State Bank of India (SBI), has issued a fresh cybersecurity alert warning customers about an ongoing phishing campaign ta...

T1566

GBHackers →

BleepingComputer Campaigns May 27

GPU mining malware spreads via SEO poisoning, AI chatbots

Threat actors are targeting systems with high-performance computers in an ongoing cryptojacking campaign spread through a coordinated SEO poisoning operation...

BleepingComputer →

Help Net Security Campaigns Microsoft May 27

AI chatbot recommendations lure users to cryptojacking malware sites

Cybercriminals are using AI chatbot interactions alongside poisoned search results to direct users to malicious download sites in an active cryptojacking cam...

Help Net Security →

HackRead Campaigns Zoom May 27

Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Iran’s Nimbus Manticore hackers used trojanized Zoom installers to deploy malware against US firms during a wider IRGC linked cyber campaign.

HackRead →

Security Affairs Campaigns Intel May 27

The LA Metro Attack Wasn’t Hacktivism. It Was a State Operation With a Costume On.

Iran’s “hacktivist” group Ababil of Minab, which hit LA Metro and wiped terabytes of data, is forensically linked to Iran’s intelligence service MOIS.

Security Affairs →

Cyberscoop Campaigns Google CrowdStrike May 27

CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain

CrowdStrike has dismantled the Glassworm botnet in an operation aided by Google and Shadowserver, stripping the operators’ access to infrastructure that help...

Cyberscoop →

SC Media Campaigns May 27

Iranian threat group targets US aviation sector with AI-assisted ‘MiniFast’ backdoor

Career-themed phishing lures targeted employees of US domestic airlines during Operation Epic Fury.

T1566

SC Media →

Infosecurity Magazine Campaigns Oracle May 27

PureLogs Variant Steals Data via Purchase Order Lures

FortiGuard Labs detailed a PureLogs campaign using JavaScript, PowerShell and process hollowing

Infosecurity Magazine →

The Hacker News Campaigns Microsoft Intel May 27

AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites

Microsoft has warned of an active cryptojacking campaign that makes use of artificial intelligence (AI) chatbot interactions as a mechanism for surfacing mal...

T1204

The Hacker News →

GBHackers Campaigns Apple SAP May 27

New Zero-Click WhatsApp Account Takeover Attack Targets iOS 16 Users

A newly uncovered zero-click attack targets iPhone users running iOS 16, allowing threat actors to hijack WhatsApp accounts without any user interaction, vis...

GBHackers →

SC Media Campaigns Google May 26

Fake AI tool websites used to steal developer data

The attack campaign employs SEO poisoning to elevate fake installation pages in search engine results, leading developers searching for AI tools like Google ...

SC Media →

Microsoft Security Blog Campaigns Microsoft May 26

From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities

Microsoft exposes a cryptojacking campaign using SEO poisoning and ScreenConnect to target high-performance PCs, with malicious sites also surfaced through A...

Microsoft Security Blog →

The Hacker News Campaigns Broadcom May 26

MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries

The Iranian hacking group known as MuddyWater has been linked to a new campaign affecting at least nine organizations across nine countries on four continent...

The Hacker News →

CSO Online Campaigns GitHub May 26

GitHub Actions abused by Megalodon attack to slip malicious commits into 5,500 repos

A large-scale automated GitHub backdooring campaign was caught pushing thousands of malicious commits into public repositories while posing as routine CI/CD ...

CSO Online →

SecurityWeek Campaigns May 26

Iranian APT Targets Aviation, Software Companies With Updated Tools

Nimbus Manticore has continued its operations during and after the US military campaign against Iran. The post Iranian APT Targets Aviation, Software Compani...

SecurityWeek →

Fortinet Blog Campaigns Oracle May 26

Phishing Campaign Deploys JavaScript-Driven PureLogs Variant to Steal Sensitive Data

FortiGuard Labs analyzed a new phishing campaign that uses obfuscated JavaScript, PowerShell, process hollowing, and PureLogs to steal sensitive data

T1566

Fortinet Blog →

CSO Online Campaigns Amazon GitHub May 26

TrapDoor malware campaign puts developer workstations in CISO spotlight

A malicious package campaign across npm, PyPI, and Crates.io has put developer workstations back under scrutiny, after researchers said it targeted developer...

1 IOC

CSO Online →

GBHackers Campaigns Microsoft Linux May 26

China-Linked Hackers Hit SEA Edge Routers With Custom Linux Implant

China-linked hackers are conducting a stealthy infrastructure-centric espionage campaign across Southeast Asia by compromising Linux-based edge routers with ...

GBHackers →

«Previous page 1 ... 17 18 19 20 21 ... 31 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA