◉ Threat Intelligence
May 27, 2026
Africa Relinquishes Cyberattack Lead to Latin America — For Now - Dark Reading
Africa Relinquishes Cyberattack Lead to Latin America — For Now Dark Reading
Dark Reading
Read →
cyberintel.kalymoon.com · 1245 articles · updated every 4 hours · grows forever
Africa Relinquishes Cyberattack Lead to Latin America — For Now Dark Reading
Google announces Sec-Gemini v1, a new experimental cybersecurity model blog.google
Microsoft exposes a cryptojacking campaign using SEO poisoning and ScreenConnect to target high-performance PCs, with malicious sites also surfaced through AI chatbots. The post From poisoned search r…
Cyble Blaze AI: Unified Enterprise Threat Intelligence Cyble
Executive Summary During the March–April 2026 reporting period, AI use in offensive operations advanced from development and planning to real-time operational deployment. Multiple independent cases, i…
Introduction
TeamPCP now operates across three package ecosystems in parallel, it reached GitHub&#;x26;#;39;s own internal codebase, it trojanized an officially Microsoft-published Python SDK, and it appears to ha…
TeamPCP now operates across three package ecosystems in parallel, it reached GitHub&#;x26;#;39;s own internal codebase, it trojanized an officially Microsoft-published Python SDK, and it appears to ha…
Microsoft Access files (Microsoft Office&#;x26;#;39;s Database) can contain VBA code.
For the latest discoveries in cyber research for the week of 25th May, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES 7-Eleven, the global convenience store chain, confirme…
Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and …
Written by: Takahiro Sugiyama, Peter Revelant, Mathew Potaczek Introduction In late 2025, Mandiant responded to a security incident involving a compromised web server running KnowledgeDeliver . Knowle…
Written by: Jamie Collier While Russian-speaking threat actors have historically dominated the phishing-as-a-service (PhaaS) landscape, a rival ecosystem is rapidly growing within the Chinese-language…
Wireshark release 4.6.6 fixes 1 vulnerability and 11 bugs.
Hackers claiming ties to Clop launch wide extortion campaign targeting corporate executives Cybersecurity Dive
This week, I'm attending the SEC670[1] training (“Red Teaming Tools - Developing Windows Implants, Shellcode, Command and Controlâ€). From my point of view, this training fits perfectly with FOR610…
The Trucking Industry’s Threat Intelligence Gap Heavy Duty Trucking
How Frontier firms secure AI at scale: read how Microsoft customers embed governance, identity, and cloud security to make protection an enabler of AI growth. The post Microsoft Security success stori…
A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence server for credential theft and identity compromise. Learn how the threat act…