People's Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection CISA (.gov)
cyberintel.kalymoon.com · 1256 articles · updated every 4 hours · grows forever
People's Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection CISA (.gov)
Resecurity and AfricaCERT Forge Strategic Partnership to Advance Cybersecurity Across the African Continent Business Wire
Iranian Infy APT Resurfaces with New Malware Activity After Years of Silence The Hacker News
Written by: Stuart Carrera Introduction Building on recent BRICKSTORM research from Google Threat Intelligence Group (GTIG), this post explores the evolving threats facing virtualized environments. Th…
This report provides an overview of trends and developments in the cybercriminal ecosystem of Latin America and the Caribbean (LAC) in 2025.
From its GitHub repo: "Vite (French word for "quick", pronounced /vi?t/, like "veet") is a new breed of frontend build tooling that significantly improves the frontend development experience" [https:/…
CloudSEK warns Muddy Water APT using Rust implants in spearphishing on Middle East critical infrastructure Industrial Cyber
Singapore on high alert over cybersecurity threats Vietnam+ (VietnamPlus)
Intel 471’s updated Geopolitical Intelligence solution is designed to translate volatile global dynamics into timely, actionable insights.
TeamPCP is exploiting trusted npm and PyPI packages to compromise developer environments, steal credentials, and extend attacks across software supply chains.
On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages for version updates (1.14.1 and 0.30.4) to download from command and contro…
The expanding conflict around Iran signals a deeper shift. We have entered an era of quantum geopolitics, where the old rules of the international order no longer apply
APT Activity Report Q4 2024 - Q1 2025 ESET
Unit 42 discusses the supply chain attack targeting Axios. Learn about the full attack chain, from the dropper to forensic cleanup. The post Threat Brief: Widespread Impact of the Axios Supply Chain A…
Payment fraud has industrialized, and that's a defensive advantage. Learn how standardized attack infrastructure creates detectable patterns that financial institutions can act on before losses occur.
Today, most malware are called “fileless†because they try to reduce their footprint on the infected computer filesystem to the bare minimum. But they need to write something… think about persis…
This is the fifth update to the TeamPCP supply chain campaign threat intelligence report, "When the Security Scanner Became the Weapon" (v3.0, March 25, 2026). Update 004 covered developments through …
AI-Assisted Threat Actor Compromises 600+ FortiGate Devices in 55 Countries The Hacker News
CyberSOCEval Open-Source Framework Redefines AI-Driven Malware Analysis and Threat Intelligence cyberpress.org