threat groups – Experimental News Clipping Site

The Register: Beijing went to ‘EggStreme’ lengths to attack Philippines military, researchers say

Sep 11, 2025

—

by

Source URL: https://www.theregister.com/2025/09/11/eggstreme_malware_china_philippines/ Source: The Register Title: Beijing went to ‘EggStreme’ lengths to attack Philippines military, researchers say Feedly Summary: Ovoid-themed in-memory malware offers a menu for mayhem ‘EggStreme’ framework looks like the sort of thing Beijing would find handy in its ongoing territorial beefs Infosec outfit Bitdefender says it’s spotted a strain of in-memory…

Cloud Blog: A Cereal Offender: Analyzing the CORNFLAKE.V3 Backdoor

Aug 20, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/analyzing-cornflake-v3-backdoor/ Source: Cloud Blog Title: A Cereal Offender: Analyzing the CORNFLAKE.V3 Backdoor Feedly Summary: Written by: Marco Galli Welcome to the Frontline Bulletin Series Straight from Mandiant Threat Defense, the “Frontline Bulletin" series brings you the latest on the most intriguing compromises we are seeing in the wild right now, equipping our community…

Slashdot: CrowdStrike Investigated 320 North Korean IT Worker Cases In the Past Year

Aug 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://it.slashdot.org/story/25/08/04/2032214/crowdstrike-investigated-320-north-korean-it-worker-cases-in-the-past-year Source: Slashdot Title: CrowdStrike Investigated 320 North Korean IT Worker Cases In the Past Year Feedly Summary: AI Summary and Description: Yes Summary: The report highlights a significant rise in North Korean operatives using generative AI to infiltrate tech jobs globally, particularly within Fortune 500 and smaller organizations. CrowdStrike’s observations underline a…

CSA: U.S. Strikes on Iran Could Trigger Cyber Retaliation

Jul 28, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloudsecurityalliance.org/articles/u-s-strikes-on-iran-could-trigger-cyber-retaliation Source: CSA Title: U.S. Strikes on Iran Could Trigger Cyber Retaliation Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the implications of Iranian cyber threats against U.S. critical infrastructure amid escalating geopolitical tensions. It emphasizes the evolving landscape of cyber threats, especially from adversaries who may leverage both traditional…

Cloud Blog: The Cost of a Call: From Voice Phishing to Data Extortion

Jun 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/voice-phishing-data-extortion/ Source: Cloud Blog Title: The Cost of a Call: From Voice Phishing to Data Extortion Feedly Summary: Introduction Google Threat Intelligence Group (GTIG) is tracking UNC6040, a financially motivated threat cluster that specializes in voice phishing (vishing) campaigns specifically designed to compromise organization’s Salesforce instances for large-scale data theft and subsequent extortion.…

Cloud Blog: Mandiant M-Trends 2025: 3 key insights for public sector agencies

May 27, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/public-sector/mandiant-m-trends-2025-3-key-insights-for-public-sector-agencies/ Source: Cloud Blog Title: Mandiant M-Trends 2025: 3 key insights for public sector agencies Feedly Summary: The cyber defense and threat landscape demands continuous adaptation, as threat actors continue to refine their tactics to breach defenses. While some adversaries are using increasingly sophisticated approaches with custom malware, zero-day exploits, and advanced evasion…

Cloud Blog: Cloud CISO Perspectives: Data-driven insights into AI and cybersecurity

Apr 30, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-data-driven-insights-ai-cybersecurity/ Source: Cloud Blog Title: Cloud CISO Perspectives: Data-driven insights into AI and cybersecurity Feedly Summary: Welcome to the second Cloud CISO Perspectives for April 2025. Today, Sandra Joyce, vice president, Google Threat Intelligence, will talk about the practical applications of AI in both attack and defense, adapted from her RSA Conference keynote.As…

Cloud Blog: Hello 0-Days, My Old Friend: A 2024 Zero-Day Exploitation Analysis

Apr 29, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/2024-zero-day-trends/ Source: Cloud Blog Title: Hello 0-Days, My Old Friend: A 2024 Zero-Day Exploitation Analysis Feedly Summary: Written by: Casey Charrier, James Sadowski, Clement Lecigne, Vlad Stolyarov Executive Summary Google Threat Intelligence Group (GTIG) tracked 75 zero-day vulnerabilities exploited in the wild in 2024, a decrease from the number we identified in 2023…

Cloud Blog: M-Trends 2025: Data, Insights, and Recommendations From the Frontlines

Apr 23, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/m-trends-2025/ Source: Cloud Blog Title: M-Trends 2025: Data, Insights, and Recommendations From the Frontlines Feedly Summary: One of the ways threat actors keep up with the constantly evolving cyber defense landscape is by raising the level of sophistication of their attacks. This trend can be seen across many of our engagements, particularly when…

The Register: Malware variants that target operational tech systems are very rare – but 2 were found last year

Feb 25, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/25/new_ics_malware_dragos/ Source: The Register Title: Malware variants that target operational tech systems are very rare – but 2 were found last year Feedly Summary: Fuxnet and FrostyGoop were both used in the Russia-Ukraine war Two new malware variants specifically designed to disrupt critical industrial processes were set loose on operational technology networks last…

Tag: threat groups