Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Campaigns

20 articles

The Hacker News Campaigns Palo Alto Networks Jun 26

Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign

A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at governmen...

The Hacker News →

The Hacker News Campaigns Microsoft Jun 26

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

An active phishing campaign has been targeting hotel and other hospitality organizations across Europe and Asia since April 2026, using photo-themed ZIP file...

T1566

The Hacker News →

Help Net Security Campaigns Microsoft Oracle Jun 26

Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials

Mirage2FA, a phishing kit that combines short-lived HTML smuggling with obfuscated JavaScript loaders to deliver fake Microsoft 365 login pages and steal cre...

T1566

Help Net Security →

Help Net Security Campaigns Jun 26

Mystery hackers use novel SharkLoader dropper against governments, software devs

Kaspersky researchers have uncovered a previously unknown cyberattack campaign that has compromised government organizations and software development compani...

Help Net Security →

SecurityWeek Campaigns Jun 26

Russian APT Deploys ‘StockStay’ Backdoor Against Ukrainian Targets

Turla has been using the backdoor against government and military organizations in Ukraine for espionage. The post Russian APT Deploys ‘StockStay’ Backdoor A...

SecurityWeek →

Help Net Security Campaigns Jun 26

SIM-swapping gang busted in international police operation

Officers from Poland’s Central Bureau for Combating Cybercrime (CBZC) arrested four suspected members of an organized cybercrime group accused of SIM swap at...

Help Net Security →

The Hacker News Campaigns Microsoft Google Intel Jun 26

Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks

The Russian state-sponsored threat actor known as Turla has been attributed to a previously undocumented .NET backdoor called STOCKSTAY that has been deploye...

The Hacker News →

GBHackers Campaigns Jun 26

Chinese-Speaking Hackers Deploy TinyRCT Backdoor Against Critical Energy Infrastructure

A Chinese-speaking threat cluster tracked as CL-STA-1062 has deployed a newly discovered .NET backdoor, TinyRCT, in targeted campaigns against government and...

GBHackers →

GBHackers Campaigns Jun 26

Hackers Use Malicious Minecraft Fabric Mods to Deploy LoaderClient and WeedHack Stealer

Hackers are weaponizing malicious Minecraft Fabric mods to deliver LoaderClient. This stage-one malware loader steals session data and hands it off to the We...

GBHackers →

Microsoft Security Blog Campaigns Microsoft Intel Jun 25

Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access

Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in Europe and Asia. The campaign uses p...

Microsoft Security Blog →

SC Media Campaigns Intel Jun 25

ASIO establishes dedicated teams to counter nation-state cyber sabotage

As reported by The Register, Australia's Security and Intelligence Organisation (ASIO) has formed specialized units to combat cyber sabotage orchestrated by ...

SC Media →

GBHackers Campaigns Amazon Cloudflare Jun 25

Hackers Abuse Cloudflare-Hosted AWS Phishing Domains to Steal Console Logins

A concise but sophisticated phishing campaign that targeted AWS console users by abusing Cloudflare-hosted domains to deliver adversary-in-the-middle (AiTM) ...

T1566 T1078 T1557

GBHackers →

GBHackers Campaigns Microsoft Google Oracle Jun 25

Hackers Use Malicious Chrome Extension to Break Out of Browser Sandbox

A sophisticated malware campaign that combined a phishing lure, an obfuscated Windows JavaScript dropper, a malicious Google Chrome extension and a Native Me...

T1566

GBHackers →

GBHackers Campaigns Jun 25

Alibaba Accused of Illicitly Accessing Claude AI Models Using 25,000 Fraudulent Accounts

Anthropic has accused the Chinese technology conglomerate Alibaba of orchestrating a large-scale, coordinated operation to extract capabilities from its Clau...

GBHackers →

GBHackers Campaigns Jun 25

StrikeShark Campaign Uses New SharkLoader Malware to Deploy Cobalt Strike Beacon

During a recent investigation into activity affecting a diplomatic mission in Indonesia, researchers uncovered a previously undocumented loader family they n...

GBHackers →

HackRead Campaigns Jun 24

Operation Endgame Disrupts StealC, Amadey and SocGholish Malware Networks

Operation Endgame disrupts StealC malware infrastructure, seizing millions of stolen credentials and targeting servers used in global cybercrime campaigns.

T1078

HackRead →

Infosecurity Magazine Campaigns Jun 24

Europol-Led Operation Endgame Takes Down StealC and Amadey Infostealers

Operation Endgame seized around 50 domains and nearly 200 active IP-based servers associated with the infostealers

Infosecurity Magazine →

HackRead Campaigns Jun 24

New GhostShell Hacking Group Targets Ukraine’s Drone Defense Sector

Researchers warn GhostShell is using fake drone documents to target Ukrainian defence teams, stealing passwords and sensitive data in a new cyber campaign.

HackRead →

SecurityWeek Campaigns Microsoft Jun 24

Microsoft and Allies Smash Shared Infrastructure of Amadey and StealC Malware

Hundreds of C&C servers were disrupted in an operation involving law enforcement and several cybersecurity companies. The post Microsoft and Allies Smash Sha...

T1071

SecurityWeek →

SC Media Campaigns Fortinet Jun 24

FortiBleed campaign steals 110M credentials from FortiGate targets

A tool called FortigateSniffer abuses a diagnostic utility to continuously monitor network traffic.

SC Media →

«Previous page 1 ... 5 6 7 8 9 ... 31 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA