Topic: proactive defense measures
-
Microsoft Reveals Scattered Spider's New Cyberattack Tactics
Microsoft revealed Scattered Spider's shift toward hybrid cloud and on-premises breaches, using local infrastructure compromises to move laterally into cloud environments. The group deploys DragonForce ransomware targeting VMware ESX hypervisors and employs aggressive social engineering, phishing...
Read More » -
Phishing Attack Targets U.S. Education Dept's G5 Portal
A sophisticated phishing operation targets the U.S. Department of Education’s G5 portal, using fake domains like g5parameters.com to steal credentials through realistic-looking login pages. Attackers employ advanced tactics like domain cloaking and Cloudflare to evade detection, exploiting tr...
Read More » -
Chinese Hackers Exploit Critical SharePoint 'ToolShell' Flaws
Chinese-linked hacking groups (Linen Typhoon, Violet Typhoon, Storm-2603) are exploiting critical Microsoft SharePoint vulnerabilities (CVE-2025-53770, CVE-2025-53771) to steal data or deploy ransomware. Linen Typhoon targets government and defense sectors, while Violet Typhoon focuses on intelle...
Read More » -
SonicWall firewalls targeted in rising Akira ransomware attacks
SonicWall firewalls are being targeted in Akira ransomware attacks, potentially exploiting an undisclosed security flaw, with attackers using compromised SSL VPN connections for initial access. Akira ransomware has extorted over $42 million from 250+ victims, employing tactics like routing authen...
Read More » -
Chinese Hackers Exploit SharePoint Zero-Day, Warn Google & Microsoft
Google and Microsoft experts discovered a critical SharePoint vulnerability (CVE-2025-53770) exploited by Chinese state-sponsored hackers to steal encryption keys and compromise corporate networks. Three China-linked hacking groups (Linen Typhoon, Violet Typhoon, Storm-2603) have weaponized the f...
Read More »
