Intelligence

Russia-linked ColdRiver used LostKeys malware in recent attacks<gwmw style="display:none;"></gwmw>Russia-linked ColdRiver used LostKeys malware in recent attacks<gwmw style="display:none;"></gwmw>

Russia-linked ColdRiver used LostKeys malware in recent attacks<gwmw style="display:none;"></gwmw>

Since early 2025, Russia-linked ColdRiver has used LostKeys malware to steal files in espionage attacks on Western governments and organizations.…

5 days ago
Russia-linked group Nebulous Mantis targets NATO-related defense organizationsRussia-linked group Nebulous Mantis targets NATO-related defense organizations

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

PRODAFT researchers warn of Russia-linked APT group Nebulous Mantis targeting NATO-related defense organizations Nebulous Mantis, a Russian-speaking cyber espionage group…

2 weeks ago
France links Russian APT28 to attacks on dozen French entitiesFrance links Russian APT28 to attacks on dozen French entities

France links Russian APT28 to attacks on dozen French entities

France blames Russia-linked APT28 for cyberattacks targeting or compromising a dozen French government bodies and other entities. The Russia-linked APT28…

2 weeks ago
Earth Kurma APT is actively targeting government and telecommunications orgs in Southeast AsiaEarth Kurma APT is actively targeting government and telecommunications orgs in Southeast Asia

Earth Kurma APT is actively targeting government and telecommunications orgs in Southeast Asia

Earth Kurma APT carried out a sophisticated campaign against government and telecommunications sectors in Southeast Asia. Trend Research exposed the…

2 weeks ago
Operation SyncHole: Lazarus APT targets supply chains in South Korea<gwmw style="display:none;"></gwmw>Operation SyncHole: Lazarus APT targets supply chains in South Korea<gwmw style="display:none;"></gwmw>

Operation SyncHole: Lazarus APT targets supply chains in South Korea<gwmw style="display:none;"></gwmw>

The North Korea-linked Lazarus Group targeted at least six firms in South Korea in a cyber espionage campaign called Operation…

3 weeks ago
Android spyware hidden in mapping software targets Russian soldiers<gwmw style="display:none;"></gwmw>Android spyware hidden in mapping software targets Russian soldiers<gwmw style="display:none;"></gwmw>

Android spyware hidden in mapping software targets Russian soldiers<gwmw style="display:none;"></gwmw>

A new Android spyware was discovered in a fake Alpine Quest app, reportedly used by Russian soldiers for war zone…

3 weeks ago
Kimsuky APT exploited BlueKeep RDP flaw in attacks against South Korea and JapanKimsuky APT exploited BlueKeep RDP flaw in attacks against South Korea and Japan

Kimsuky APT exploited BlueKeep RDP flaw in attacks against South Korea and Japan

Researchers spotted a new North Korea-linked group Kimsuky 's campaign, exploiting a patched Microsoft Remote Desktop Services flaw to gain…

3 weeks ago
Russia-linked APT29 targets European diplomatic entities with GRAPELOADER malwareRussia-linked APT29 targets European diplomatic entities with GRAPELOADER malware

Russia-linked APT29 targets European diplomatic entities with GRAPELOADER malware

Russia-linked group APT29 targeted diplomatic entities across Europe with a new malware loader codenamed GRAPELOADER. Check Point Research team reported…

3 weeks ago
Security Affairs newsletter Round 520 by Pierluigi Paganini – INTERNATIONAL EDITIONSecurity Affairs newsletter Round 520 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 520 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free…

3 weeks ago
China-linked APT Mustang Panda upgrades tools in its arsenalChina-linked APT Mustang Panda upgrades tools in its arsenal

China-linked APT Mustang Panda upgrades tools in its arsenal

China-linked APT group Mustang Panda deployed a new custom backdoor, MQsTTang, in recent attacks targeting Europe, Asia, and Australia. China-linked…

4 weeks ago