Security researchers have uncovered two Chrome extensions—both named “Phantom Shuttle (幻影穿梭)”—that masquerade as VPN or network … Phantom Shuttle: Malicious Chrome VPN Extensions UnmaskedRead more
incident response
MacSync Stealer: What You Must Know About Notarized Malware
MacSync Stealer is back—and it’s stealthier than before. Recent analysis shows a new variant abusing Apple’s … MacSync Stealer: What You Must Know About Notarized MalwareRead more
SideWinder Campaign 2025: Tax-Themed Phishing and DLL Side-Loading Attack
In 2025, the SideWinder APT group launched a stealthy campaign against Indian organizations, using tax-themed phishing … SideWinder Campaign 2025: Tax-Themed Phishing and DLL Side-Loading AttackRead more
Nissan Data Breach 2025: What Happened and How to Respond
In September 2025, Nissan Motor Corporation disclosed a significant data breach involving unauthorized access to Red … Nissan Data Breach 2025: What Happened and How to RespondRead more
BlindEagle’s Fileless Attack Hits Colombian Agencies
In September 2025, BlindEagle (APT‑C‑36) launched a sophisticated spear‑phishing operation against a Colombian government agency under … BlindEagle’s Fileless Attack Hits Colombian AgenciesRead more
Insider Threat Recruitment: How Cybercriminals Turn Employees Into Attack Vectors
In 2024, cybercrime tactics took a dangerous turn: instead of breaking in, attackers started logging in. … Insider Threat Recruitment: How Cybercriminals Turn Employees Into Attack VectorsRead more
Inside North Korea’s $2.02B Crypto Heist: How to Detect & Defend
In 2025, North Korea–linked threat actors executed the most lucrative year of cryptocurrency theft on record—$2.02 … Inside North Korea’s $2.02B Crypto Heist: How to Detect & DefendRead more
Kimwolf Botnet: Inside the Massive Android Malware Threat
Android-based devices are no longer just personal gadgets—they are now high-value attack infrastructure. In late 2025, … Kimwolf Botnet: Inside the Massive Android Malware ThreatRead more
PDVSA Cyberattack: What Happened and Why It Matters
Venezuela’s state-owned oil giant Petróleos de Venezuela (PDVSA) is in the spotlight after a suspected cyberattack … PDVSA Cyberattack: What Happened and Why It MattersRead more
NoName057(16) DDoS Surge: Inside DDoSia and How to Defend
Since 2022, the pro-Russia hacktivist collective NoName057(16) has weaponized a volunteer-driven DDoS ecosystem to hammer NATO-aligned … NoName057(16) DDoS Surge: Inside DDoSia and How to DefendRead more