Topic: threat groups

Sort by: Relevance | Date
  • Google dismantles secret network hijacking phone internet
    February 2, 2026

    Google dismantles secret network hijacking phone internet

    Google dismantled a major cybercrime operation that hijacked millions of personal devices to create a global proxy network, which hackers used to mask malicious traffic through unsuspecting users' home connections. The network was built using deceptive software kits hidden in legitimate apps, sec...

    Read More »
  • Google Takes Down Proxy Network Used by 550+ Hacker Groups
    January 30, 2026

    Google Takes Down Proxy Network Used by 550+ Hacker Groups

    Google dismantled the Ipidea residential proxy network, which was used by over 550 hacker groups to hide attacks by routing malicious traffic through millions of compromised home devices. These networks are built by secretly installing proxy software on consumer devices, often through trojanized ...

    Read More »
  • Urgent Samsung Patch Stops Spyware Exploit
    November 12, 2025

    Urgent Samsung Patch Stops Spyware Exploit

    Samsung has released a critical security update for a vulnerability (CVE-2025-21042) in its image processing library, which was actively exploited to install the LANDFALL spyware on mobile devices. The spyware uses a zero-click infection method via manipulated image files, allowing it to infect d...

    Read More »
  • Ransomware Profits Plummet as Victims Refuse to Pay
    October 29, 2025

    Ransomware Profits Plummet as Victims Refuse to Pay

    Ransomware payment rates have hit a record low of 23%, driven by improved corporate defenses and pressure from authorities not to pay cybercriminals. Attackers are increasingly using "double extortion" tactics, with data theft involved in over 76% of incidents, though payment rates for such attac...

    Read More »
  • Sharepoint ToolShell Attacks Strike Global Orgs on 4 Continents
    October 23, 2025

    Sharepoint ToolShell Attacks Strike Global Orgs on 4 Continents

    The ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint is a critical zero-day flaw that allows unauthenticated remote attackers to execute arbitrary code and access file systems, bypassing previous vulnerabilities. Microsoft attributes the exploitation to Chinese threat actors like ...

    Read More »
  • Microsoft Thwarts Ransomware Attack on Teams Users
    October 17, 2025

    Microsoft Thwarts Ransomware Attack on Teams Users

    Microsoft invalidated over 200 fraudulent digital certificates to disrupt a ransomware campaign that used fake Teams installers, blocking the Rhysida ransomware's distribution network in early October. The attack, orchestrated by the Vanilla Tempest group, involved malvertising and spoofed websit...

    Read More »
  • Discord data breach exposes user support tickets to hackers
    October 5, 2025

    Discord data breach exposes user support tickets to hackers

    A security breach at Discord exposed sensitive user data after hackers infiltrated a third-party customer support provider, impacting users who had submitted support tickets. The attackers obtained personal details like names, email addresses, message content, and even official ID images, demandi...

    Read More »

Related Topics

data exfiltration (3) financial motivation (2) residential proxy networks (2) ipidea network (2) ransomware attacks (1) double extortion (1) proxy market opacity (1) government targets (1)