Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Campaigns

20 articles

Infosecurity Magazine Campaigns Google Jul 1

Fileless Malware Abuses Google Blogspot to Deploy Infostealer in Memory

Securonix said the Veil#Drop campaign abuses Google Blogspot to deliver PureLog Stealer in memory

Infosecurity Magazine →

Security Affairs Campaigns Microsoft Jul 1

Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs

81 Million Login Attempts, 78 Compromised Accounts: The LSHIY Password Spray Hitting Azure CLI Huntress researchers have been tracking a massive automated pa...

Security Affairs →

GBHackers Campaigns Google Jul 1

Malicious Google Notes Extension Swaps Crypto Wallet Addresses During Transactions

Technically sophisticated campaign delivering a malicious Chromium extension that silently swaps cryptocurrency wallet addresses during transactions. Deliver...

GBHackers →

GBHackers Campaigns Google Apple Jul 1

MacSync Stealer Hijacks macOS via Fake Claude Code Google Ads – Full Attack Chain Exposed

MacSync Stealer is a newly discovered macOS infostealer actively distributed through a sophisticated malvertising campaign on Google Ads that impersonates An...

T1204 T1189

GBHackers →

SecurityWeek Campaigns Adobe Jul 1

Adobe Patches Critical ColdFusion, Campaign Classic Vulnerabilities

Seven of the security defects have a maximum severity rating of 10/10 and could lead to arbitrary code execution. The post Adobe Patches Critical ColdFusion,...

SecurityWeek →

Help Net Security Campaigns Microsoft Cisco Jul 1

The ARToken phishing panel targets Microsoft 365 accounts

Accounts-payable staff at U.S.

T1566

Help Net Security →

SecurityWeek Campaigns Microsoft Jul 1

Massive Password Spray Campaign Targeting Azure CLI

Hackers were seen making over 81 million login attempts originating from systems associated with hosting provider LSHIY. The post Massive Password Spray Camp...

SecurityWeek →

BleepingComputer Campaigns Amazon Adobe Jul 1

Adobe patches seven max severity ColdFusion, Campaign flaws

Adobe has released security patches for seven maximum-severity vulnerabilities in the ColdFusion web app development platform and the Campaign Classic market...

BleepingComputer →

Help Net Security Campaigns Oracle Jul 1

Nika: Open-source code analysis tool

Many serious security bugs in web applications sit across several files at once. Request data enters through a controller, moves through data objects and ser...

Help Net Security →

SANS ISC Campaigns Jul 1

Why Ask Credentials If There Are Secret Codes?, (Wed, Jul 1st)

This morning, an interesting phishing email hit my mailbox. It targets Metamask[1], a cryptocurrency wallet, available as a browser extension and a mobile ap...

T1566

SANS ISC →

BleepingComputer Campaigns Jun 30

Malicious PyPI packages give hackers control of Telegram bot servers

A campaign active since last November has been targeting Python developers building Telegram bots with trojanized Pyrogram forks that allow attackers to read...

BleepingComputer →

The Hacker News Campaigns Google Jun 30

Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses

Cybersecurity researchers have flagged an active browser extension campaign that is designed to steal cryptocurrency by stealthily replacing wallet addresses...

The Hacker News →

BleepingComputer Campaigns Jun 30

Lessons from the Underground: How to Combat Business Email Compromise

Business Email Compromise is more than an email scam. It's a coordinated operation involving compromised accounts, financial research, and cash-out networks.

T1598

BleepingComputer →

The Hacker News Campaigns Check Point Jun 30

What the Numbers Say About FIFA 2026 Cyber Risk

The FIFA World Cup 2026 opened on June 11. By that date, according to Check Point Research, the fraud infrastructure targeting it had already been built, sta...

The Hacker News →

Kaspersky Securelist Campaigns Google Jun 30

ToddyCat: your hidden email assistant. Part 2

An in-depth analysis of Umbrij, a new tool used by the ToddyCat APT group to compromise corporate email communications in Gmail. The attack targeted OAuth au...

Kaspersky Securelist →

GBHackers Campaigns Microsoft SAP Jun 30

Boss Scam Uses DLL Sideloading to Hijack WhatsApp Web and Defraud Enterprises

The new “Boss Scam” is a sharp escalation in CEO fraud: attackers now combine impersonation, Windows DLL sideloading, and WhatsApp Web session theft to turn ...

GBHackers →

SecurityWeek Campaigns Oracle Jun 30

Nissan Employee Data Breached in Oracle PeopleSoft Hack

Only a handful of the 100 organizations targeted in the PeopleSoft campaign have been confirmed. The post Nissan Employee Data Breached in Oracle PeopleSoft ...

SecurityWeek →

GBHackers Campaigns Jun 30

Japan Hotel Industry Targeted With TONResolver RAT and Guest Complaint Phishing Emails

Japan’s hotel sector is the latest target of a sophisticated phishing and remote-access trojan (RAT) campaign that leverages guest-complaint lures and an unu...

T1566 1 IOC

GBHackers →

SC Media Campaigns Microsoft Oracle Jun 29

Microsoft dismantles StegoAd campaign using malicious Edge extensions

The StegoAd campaign employed steganography to hide malicious JavaScript within image and font files, making the extensions appear legitimate and functional.

SC Media →

The Record Campaigns SAP Jun 29

US offers $10 million reward over Russian cyber campaign targeting Signal, WhatsApp

Russia-linked hacking groups tracked as UNC5792 and UNC4221 have socially engineered their way into the messaging accounts of government officials.

The Record →

«Previous page 1 ... 3 4 5 6 7 ... 31 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA