APT37 is again making headlines, where previously the North Korean-linked state-sponsored group was linked with deploying data wipers; now they're breaching air-gapped networks. Also tracked under aliases such as ScarCruft, Reaper, Red Eyes, and Ricochet Chollima, this actor has long been associated
In February 2026, researchers revealed a coordinated campaign that targeted software developers through fake job interview projects, demonstrating how threat actors increasingly weaponize trust within development workflows. This is yet another example of threat actors targeting developers specifical
In 2025 and early 2026, law enforcement and cybersecurity agencies in the United States have sounded repeated alarms over the rise of sophisticated ATM "jackpotting" attacks, incidents in which threat actors use malware and physical access to force automated teller machines to dispense cash illegall
In a landmark escalation of the fight against online piracy in Spain, a Spanish commercial court has granted precautionary measures requiring NordVPN and Proton VPN to block access to websites identified as illegally streaming LaLiga matches within Spain. The decision, issued on February 17, 2026, u
Over the past decade, the traditional understanding of military conflict has shifted. No longer confined to kinetic confrontations and physical engagements, modern strategic competition extends deeply into cyberspace. In an era where digital infrastructure underpins critical military capabilities, t
In recent months, cybersecurity researchers have discovered that advanced ransomware operators are abusing legitimate employee-monitoring and remote-support software as covert access channels into corporate networks. This shift represents a tactical evolution in ransomware tradecraft, where adversar
In recent months, cybersecurity researchers have uncovered a troubling trend in the ransomware threat landscape: cybercriminals are increasingly abusing legitimate virtual machine infrastructure to conceal their operations, deliver malicious payloads, and prolong their operations while avoiding dete
Most people think of cyberattacks as something that happens when someone clicks the wrong link in an email or visits a shady website. The latest GlassWorm malware campaign tells a very different story. In this case, attackers did not trick users directly. Instead, they hid malicious software inside
ShinyHunters and associated threat clusters have significantly refined their tactics for breaching enterprise cloud environments, shifting from opportunistic data theft to highly coordinated campaigns that exploit human trust and centralized identity infrastructure. Recent threat intelligence from
In late 2025 and early 2026, cybersecurity researchers observed a significant shift in how sophisticated threat actors establish initial access and maintain resilient command infrastructure. At the center of this evolution is a malware strain, known as Tsundere Bot, which has rapidly emerged as a mo