Threat Research - Cybersecurity News Everyday

Search Post related with “Threat Research”

*Total Collection : 4851 Threat Research (auto update every day)

Last 100 Threat Research

APT Silver Fox Utilizing Stock Investment Decoy and Undocumented Windows API to Evade DetectionMarch 30, 2025
Hidden Malware Strikes Again: Mu-Plugins Under AttackMarch 30, 2025
Unveiling APT28’s Advanced Obfuscated Loader and HTA Trojan: A Deep Dive with x32dbg DebuggingMarch 29, 2025
Major Cyber Attacks Targeting Transportation & Logistics IndustryMarch 29, 2025
MAR-25993211-r1.v1 Ivanti Connect Secure (RESURGE)March 29, 2025
Analysis of Konni RAT: Stealth, Persistence, and Anti-Analysis TechniquesMarch 29, 2025
Apache Tomcat: CVE-2025-24813March 29, 2025
Lotus Blossom: New Sagerunex Backdoor Variants Are Targeting APAC GovernmentsMarch 28, 2025
A Deep Dive into Water Gamayun’s Arsenal and InfrastructureMarch 28, 2025
TsarBot: A New Android Banking Trojan Targeting Over 750 Banking, Finance, and Cryptocurrency ApplicationsMarch 28, 2025
How an Exposed Jenkins Instance Led to a Full-Scale Infrastructure CompromiseMarch 28, 2025
I Am Not A RobotMarch 28, 2025
StreamElements Confirms Third-Party Data Breach from an Infostealer InfectionMarch 28, 2025
PJobRAT makes a comeback, takes another crack at chat appsMarch 28, 2025
How SVigil Prevented a Massive Supply Chain Breach in Banking Infrastructure?March 28, 2025
XWorm Unmasked: Weaponizing Script Obfuscation and Modern Evasion TechniquesMarch 27, 2025
Weaver Ant: Tracking a China-Nexus Cyber Espionage OperationMarch 27, 2025
Shifting the sands of RansomHub’s EDRKillShifterMarch 27, 2025
CoffeeLoader: A Brew of Stealthy TechniquesMarch 27, 2025
Unsecured Loans: How Hidden Flaws in Digital Lending Platforms Could Cripple Your Fintech BusinessMarch 27, 2025
New Phishing Campaign Uses Browser-in-the-Browser Attacks to Target Video Gamers/Counter-Strike 2 PlayersMarch 27, 2025
Malware found on npm infecting local package with reverse shellMarch 27, 2025
Consequences of INPS-themed Smishing: Stolen Documents for Sale OnlineMarch 26, 2025
Arkana Ransomware Group Hacks WideOpenWest Using Data from an Infostealer InfectionMarch 26, 2025
Beyond the Scanner: How Phishers Outsmart Traditional Detection MechanismsMarch 26, 2025
SnakeKeylogger: A Multistage Info Stealer Malware CampaignMarch 26, 2025
Inside Kimsuky’s Latest Cyberattack: Analyzing Malicious Scripts and PayloadsMarch 26, 2025
Detecting and Mitigating IngressNightmare – CVE-2025-1974March 26, 2025
Operation ForumTroll: APT attack with Google Chrome zero-day exploit chainMarch 26, 2025
New Malicious Wave via PEC: MintsLoader Now Distributes AsyncRatMarch 26, 2025
YouTube Creators Under Siege Again: Clickflix Technique Fuels Malware AttacksMarch 26, 2025
The Curious Case of PlayBoy LockerMarch 26, 2025
Raspberry Robin: Copy Shop USB Worm Evolves to Initial Access Broker Enabling Other Threat Actor AttacksMarch 26, 2025
CVE-2025-26633: How Water Gamayun Weaponizes MUIPath using MSC EvilTwinMarch 26, 2025
GorillaBot: Technical Analysis and Code Similarities with MiraiMarch 26, 2025
New Android Malware Campaigns Evading Detection Using Cross-Platform Framework .NET MAUI | McAfee BlogMarch 25, 2025
Active Lumma Stealer Campaign Impacting U.S. SLTTsMarch 25, 2025
RaaS Evolved: LockBit 3.0 vs LockBit 4.0March 25, 2025
Tempted to Classifying APT Actors: Practical Challenges of Attribution in the Case of Lazarus’s SubgroupMarch 25, 2025
FizzBuzz to FogDoor: Targeted Malware Campaign Exploits Job-Seeking DevelopersMarch 25, 2025
Warning Against Phishing Emails Distributing GuLoader Malware by Impersonating a Famous International Shipping CompanyMarch 25, 2025
Shedding Light on the ABYSSWORKER Driver – Elastic Security LabsMarch 25, 2025
Threat Intelligence Report Mar 18th,– Mar 24th, 2025March 25, 2025
Part 2: Validating the Breach Oracle Cloud Denied – CloudSEK’s Follow-Up AnalysisMarch 24, 2025
How a Fake Meta Email Leads to Password PlunderMarch 24, 2025
Detailed Analysis of DocSwap Malware Disguised as Security Document ViewerMarch 24, 2025
Technical Advisory: Mass Exploitation of CVE-2024-4577March 24, 2025
The New Face of PowerShell: Ransomware Powered by PowerShell-Based AttacksMarch 24, 2025
VanHelsing, new RaaS in TownMarch 24, 2025
South Korean Organizations Targeted by Cobalt Strike Cat Delivered by a Rust BeaconMarch 22, 2025
New Ransomware Operator Exploits Fortinet Vulnerability DuoMarch 22, 2025
Malicious Ads Targeting Advertisers in the DNS SpotlightMarch 22, 2025
Rapid7 MDR Supports AWS GuardDuty’s New Attack Sequence AlertsMarch 22, 2025
The Biggest Supply Chain Hack Of 2025: 6M Records For Sale Exfiltrated from Oracle Cloud Affecting over 140k TenantsMarch 22, 2025
Operation FishMedleyMarch 22, 2025
Not Lost in Translation: Rosetta 2 Artifacts in macOS IntrusionsMarch 21, 2025
GoStringUngarbler: Deobfuscating Strings in Garbled BinariesMarch 21, 2025
Albabat Ransomware Group Potentially Expands Targets to Multiple OS, Uses GitHub to Streamline OperationsMarch 21, 2025
RansomHub: Attackers Leverage New Custom BackdoorMarch 21, 2025
Squid Werewolf Cyber Spies Masquerade as RecruitersMarch 21, 2025
VanHelsing RansomwareMarch 20, 2025
Dark Web Profile: FSociety (Flocker) RansomwareMarch 20, 2025
Black Basta’s Dependency Confusion Ambitions and Ransomware in Open Source EcosystemsMarch 20, 2025
SideWinder Threat Group: Maritime and Nuclear Sectors at Risk with Updated ToolsetMarch 20, 2025
The Art of Evasion: How Attackers Use VBScript and PowerShell in the Obfuscation GameMarch 20, 2025
North Korea Kimsuky Malicious Backdoor VBS Script-vbs.html (2025.3.16)March 20, 2025
Resurgence of a Fake Captcha Malware CampaignMarch 20, 2025
A Deep Dive into Strela Stealer and How It Targets European CountriesMarch 20, 2025
GrassCall Campaign: The Hackers Behind Job Recruitment Cyber ScamsMarch 20, 2025
Fake Cloudflare Verification Results in LummaStealer Trojan InfectionsMarch 20, 2025
SQLi, XSS, and SSRF: Breaking Down Zimbra’s Latest Security ThreatsMarch 20, 2025
Emulating the Sophisticated Chinese Adversary Salt TyphoonMarch 20, 2025
The Things We Think and Do Not Say: The Future of Our Beacon Object Files (BOFs)March 20, 2025
The Information Heist: Cracking the Code on Infostealers (New Hudson Rock Interview)March 19, 2025
Securing XIoT in the Era of Convergence and Zero TrustMarch 19, 2025
ZDI-CAN-25373: Windows Shortcut Exploit Abused as Zero-Day in Widespread APT CampaignsMarch 19, 2025
Sneaking a Peek into the Inner DNS Workings of Sneaky 2FAMarch 19, 2025
Threat Assessment: GitHub Actions Supply Chain Attack: The Compromise of tj-actions/changed-filesMarch 19, 2025
Targeted phishing campaign at UniPd: approximately 200 compromised credentialsMarch 19, 2025
Securonix Threat Labs Monthly Intelligence Insights – February 2025March 19, 2025
Hundreds of Malicious Google Play-Hosted Apps Bypassed Android 13 Security With EaseMarch 18, 2025
ClearFake’s New Widespread Variant: Increased Web3 Exploitation for Malware DeliveryMarch 18, 2025
Silk Typhoon Targeting IT Supply ChainMarch 18, 2025
Malvertising Campaign Leads to Info Stealers Hosted on GitHubMarch 18, 2025
Phishing campaign impersonates Booking dot com delivers a suite of credential stealing malwareMarch 18, 2025
Operation AkaiRyū: MirrorFace invites Europe to Expo 2025 and revives ANEL backdoorMarch 18, 2025
Threat Spotlight: Credential Theft vs. Admin Control—Two Devastating Paths to VPN ExploitationMarch 18, 2025
Ghost in the Router: China-Nexus Espionage Actor UNC3886 Targets Juniper Routers | Google Cloud BlogMarch 18, 2025
Unraveling Time: A Deep Dive into TTD Instruction Emulation BugsMarch 18, 2025
BitM Up! Session Stealing in Seconds Using the Browser-in-the-Middle TechniqueMarch 18, 2025
Capture the Flag: A Cybersecurity Challenge with CadoMarch 18, 2025
Medusa Ransomware Hits Record Levels, FBI and CISA Provide Key Security InsightsMarch 18, 2025
New XCSSET Malware Adds New Obfuscation and Persistence Techniques to Infect Xcode Projects | Microsoft Security BlogMarch 18, 2025
StilachiRAT analysis: From system reconnaissance to cryptocurrency theft | Microsoft Security BlogMarch 18, 2025
New GitHub Action supply chain attack: reviewdog/action-setupMarch 18, 2025
Unmasking Hidden Threats: How BeVigil Secures Apache ActiveMQ from Cyber RisksMarch 18, 2025
Major Cyber Attacks in Review: February 2025March 17, 2025
Downloader Malware Written in JPHP InterpreterMarch 17, 2025
Jaguar Land Rover Breached by HELLCAT Ransomware Group Using Its Infostealer Playbook—Then a Second Hacker StrikesMarch 17, 2025
What Is The New Steganographic Campaign Distributing Multiple MalwareMarch 17, 2025

>> Access All Threat Research

Reference for Threat Research

This Threat Research category section will FILTER and FETCH the POST (related with Analysis Report only) from the following sites:

For the sites below, automatic FETCH cannot be performed
(i need to monitor it manual, will be delay 3-7 days)

Bellow are other reference, but for some reason i’m not fetching it automatically
(i need to review the article manually, will be delay 3-5 days)

cleafy.com/labs (update 1-2 months)
guidepointsecurity.com/blog/ > category: threat advisory
research.openanalysis.net
blog.phylum.io/tag/research/
shadowstackre.com/analysis/
mssplab.github.io
farghlymal.github.io
asec.ahnlab.com/ko/
blog.bushidotoken.net
kroll.com/en/insights/publications/cyber
Sentinelone.com
blog.lumen.com

Update

December, 2024: securonixblog – Fixed (xpath error)
December, 2024: huntress – Fixed (xpath error)
December, 2024: nccgroup – Failed (Incapsula)
December, 2024: Mandiant – Removed (now part of Google Cloud)
December, 2024: antiy.cn – Failed (curl or xpath error)
December, 2024: sonicwall.com – Failed (curl error)
January, 2025: team-cymru.com (RSS Feed Removed)

Update January, 2025

“Due to copyright reasons, starting January 2025, this site will no longer display the full content of sourced articles. Only Summaries, Key Points, MITRE Tactics for Threat Research, and selected IoCs will be provided. To read the full article, please click on the ‘source’ link to view it on the original website.”