Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Campaigns

20 articles

GBHackers Campaigns Microsoft 1d ago

SNOW Malware Ecosystem Uses Teams Phishing, WebSocket Tunnels, and Browser Extensions

Threat actors are increasingly chaining classic phishing with collaboration platforms and covert tunneling to create highly believable intrusion paths. A rec...

T1566

GBHackers →

GBHackers Campaigns Google 1d ago

Umbrij Malware Lets ToddyCat Hackers Hijack Gmail Accounts Through Google API Abuse

A targeted campaign in which the ToddyCat (aka APT-style) group leverages a previously observed loader family, Umbrij, to hijack Gmail accounts by abusing Go...

T1204

GBHackers →

The Hacker News Campaigns Intel 1d ago

Fake 7-Zip Installers Turn Devices Into Residential Proxy Nodes

Cybersecurity researchers have disclosed details of a new threat actor dubbed Lurking Lizard that has been operating an end-to-end malicious residential prox...

The Hacker News →

The Record Campaigns 2d ago

Taiwan charges two businessmen over alleged role in Chinese espionage campaign

A company based in Taiwan was leasing out accounts on the popular LINE messaging app to Chinese spies, according to prosecutors, who charged two men in the a...

The Record →

BleepingComputer Campaigns Microsoft 2d ago

Entra passkey enrollment vishing targets Microsoft 365 users

A threat actor has been targeting organizations across multiple sectors with voice-based fake security requests that ask Microsoft 365 users to enroll a new ...

BleepingComputer →

SecurityWeek Campaigns Cisco 2d ago

China-Linked APT Expands Arsenal With New ‘Leash’ Backdoors

Cisco says the threat actor behind the LapDogs campaign has expanded its SOHO router malware toolkit with LongLeash, DogLeash, and JarLeash backdoors. The po...

SecurityWeek →

Infosecurity Magazine Campaigns Cisco 2d ago

China-Linked APT Expands Proxy Network With New Malware

Cisco Talos said China-linked APT UAT-7810 is growing its proxy relay network with new malware

Infosecurity Magazine →

HackRead Campaigns 2d ago

Armored Likho Hits Government, Energy Sectors With BusySnake Stealer

Kaspersky details how the newly named Armored Likho APT uses BusySnake Stealer, AI-generated loaders, and phishing to target government and energy organizati...

T1566

HackRead →

The Hacker News Campaigns Microsoft 2d ago

New Ghost Phishing Wave Is Breaking Traditional Email Security

A recent EvilTokens campaign targeting businesses across the US and Europe is exposing a new email security blind spot. This “ghost phishing” technique keeps...

T1566

The Hacker News →

The Hacker News Campaigns 2d ago

SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users

A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures.

The Hacker News →

Security Affairs Campaigns Google 2d ago

Telegram-Hosted RedWing Malware Lets Anyone Rent Android Spyware Tools

RedWing: The Android Banking Trojan You Can Rent on Telegram for Less Than a Coffee Subscription Zimperium’s zLabs team has uncovered RedWing, an Android spy...

Security Affairs →

Infosecurity Magazine Campaigns 2d ago

New Malicious Campaign Delivers Vidar Infostealer and Monero Crypto Miner

Cyber threat actors are infecting victims with the Vidar stealer and the XMRig cryptocurrency miner in a new malicious campaign

Infosecurity Magazine →

The Hacker News Campaigns Cisco 2d ago

China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware

A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into intern...

The Hacker News →

GBHackers Campaigns Microsoft 2d ago

REF6045 Uses SCMBANKER PowerShell Toolkit to Target Mexican Banking Customers

A human-operated Mexican banking fraud campaign tracked as REF6045 has been observed using a bespoke PowerShell toolkit SCMBANKER to turn commodity click-fra...

T1204

GBHackers →

GBHackers Campaigns 2d ago

Lurking Lizard Uses Drop-Catch Domains and Lookalike Brands to Distribute Proxyware

A sophisticated, long-running operation that converts consumer devices into rentable exit nodes for residential proxy services. The initial signal was a fake...

GBHackers →

GBHackers Campaigns 2d ago

Indian Income Tax Department Phishing Lure Deploys Gh0st RAT and AsyncRAT Implants

A targeted phishing campaign impersonating the Indian Income Tax Department has been observed delivering a sophisticated, six-stage infection chain that culm...

T1566

GBHackers →

Elastic Security Labs Campaigns 2d ago

ClickFix to Cash-Out: Anatomy of a Mexican Banking-Fraud Toolkit

Elastic Security Labs tracks REF6045, an active operator-assisted banking fraud operation targeting customers of Mexican banks, fintech, payment processors, ...

Elastic Security Labs →

Unit 42 Campaigns 2d ago

Vidar Stealer Unmasked: Code Signing Abuse, Go Loaders and File Inflation

A cybercrime campaign combined a loader-as-a-service framework and DLL sideloading via a Go-compiled fake MpClient.dll, a novel evasion layer combination.

Unit 42 →

Cyberscoop Campaigns 2d ago

Spain arrests suspected hacker linked to Russian hacktivist campaign

Authorities didn’t name the man or file formal charges, but accuse him of participating in attacks linked to Cyber Army of Russia Reborn and NoName. The post...

Cyberscoop →

CSO Online Campaigns Microsoft Palo Alto Networks 2d ago

Watch out for fake support calls in Microsoft Teams

Palo Alto Networks’ security division, Unit 42, is warning of yet another campaign targeting Microsoft Teams users. The new campaign begins with Teams users ...

CSO Online →

«Previous page 1 2 3 4 ... 31 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA