Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Google

20 articles

SC Media Malware Google May 27

BTMOB Android RAT poses significant threat with easy-to-use builder

First identified in February 2025, BTMOB evolved from the SpySolr malware.

SC Media →

Infosecurity Magazine Malware Google CrowdStrike May 27

CrowdStrike, Google Take Down Glassworm Botnet

Operators of the malicious Glassworm botnet have been targeting software developers since at least early 2025

Infosecurity Magazine →

Cyberscoop Campaigns Google CrowdStrike May 27

CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain

CrowdStrike has dismantled the Glassworm botnet in an operation aided by Google and Shadowserver, stripping the operators’ access to infrastructure that help...

Cyberscoop →

The Hacker News TTPs Google CrowdStrike May 27

GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure

CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control (C2) channels a...

T1195

The Hacker News →

Security Affairs TTPs Google CrowdStrike May 27

How cybersecurity firms took down Glassworm botnet in one shot

Glassworm infected developers through poisoned tools and packages until a coordinated takedown killed all four of its C2 channels at once. On May 26, 2026, a...

Security Affairs →

GBHackers Malware Google May 27

BTMOB Malware Allows Cybercriminals to Remotely Hijack Android Phones

A newly observed Android malware strain, known as BTMOB, is raising concerns among cybersecurity researchers due to its powerful remote access capabilities a...

GBHackers →

SC Media Campaigns Google May 26

Fake AI tool websites used to steal developer data

The attack campaign employs SEO poisoning to elevate fake installation pages in search engine results, leading developers searching for AI tools like Google ...

SC Media →

Help Net Security Phishing Google Intel May 26

Chinese phishing crews grow into a force to be reckoned with

Chinese-language phishing-as-a-service (PhaaS) communities are expanding in an area historically dominated by Russian-speaking cybercriminal groups. The Goog...

T1566

Help Net Security →

Infosecurity Magazine Phishing Google May 26

BTMOB Android RAT Spreads Through No-Code Builder Tooling

BTMOB Android RAT sold as a service with a no-code builder for fast, regional phishing lures

T1566

Infosecurity Magazine →

GBHackers General Google May 26

EU Regulators Prepare Landmark Fine Against Google Under Digital Markets Act

The European Union is preparing to issue a landmark penalty against Google under its Digital Markets Act (DMA), marking a significant escalation in regulator...

GBHackers →

ESET Research Campaigns Google May 26

BTMOB: A stealthy RAT burrowing deep into Android devices

The malware pairs remote access capabilities with ready-made campaign tools, lowering the barrier for full device compromise

ESET Research →

GBHackers CVE Google Intel May 26

Hackers Abuse KnowledgeDeliver LMS Flaw to Install BLUEBEAM Web Shell

Hackers are actively exploiting a critical vulnerability in the KnowledgeDeliver Learning Management System (LMS) to deploy the BLUEBEAM web shell, according...

T1190 2 IOCs

GBHackers →

Elastic Security Labs General Google May 26

Detecting Tycoon 2FA AiTM attacks across Entra ID and Google Workspace

Tycoon 2FA bypasses MFA on Entra ID and Google Workspace. We map telemetry fingerprints across both platforms, ship detection rules for both tiers, and conta...

T1557

Elastic Security Labs →

Mandiant Blog Phishing Google Intel May 25

2 PhaaS 2 Furious: The Evolution of Chinese-language Phishing Services

Written by: Jamie Collier While Russian-speaking threat actors have historically dominated the phishing-as-a-service (PhaaS) landscape, a rival ecosystem is ...

T1566

Mandiant Blog →

GBHackers Campaigns Google May 23

Hackers Use SEO Poisoning to Fake Gemini CLI, Claude Installers

Financially motivated threat actors are running an active campaign that impersonates Google’s Gemini CLI and Anthropic’s Claude Code, using SEO poisoning to ...

GBHackers →

SC Media Campaigns Google May 22

Trapdoor ad fraud campaign used hundreds of Android apps

The Trapdoor campaign initially distributed seemingly legitimate utility apps, such as PDF readers, through the Google Play Store.

SC Media →

Help Net Security Zero-Day Google WordPress Docker May 22

$20 per zero-day is already the WordPress plugin reality

Vulnerability researchers have spent the past year arguing about whether AI agents can find real bugs at scale or whether they mostly generate noise. A pipel...

Help Net Security →

Help Net Security Data Breach Google May 22

Deleted Google API keys keep working for up to 23 minutes, researchers warn

Google API keys are credentials that let applications access Google services, from Maps to the Gemini AI. If a key is leaked, an attacker can use it to make ...

Help Net Security →

GBHackers Campaigns Google May 22

Android Malware Secretly Signs Users Up for Premium Services

Android users are being targeted by a large-scale malware campaign that silently subscribes victims to premium mobile services without their knowledge. The m...

GBHackers →

GBHackers General Google May 22

Google API Key Issue Allows Deleted Keys to Retain Access to Cloud Services

Google Cloud API keys may continue functioning for up to 23 minutes after deletion, exposing a significant security gap that could allow attackers to retain ...

GBHackers →

«Previous page 1 ... 11 12 13 14 15 ... 22 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA