Cybersecurity News - Page 5

The campaign, active since at least August 2025, has targeted military, government, civilian, and business sectors.

The attacks used forged authentication override cookies to impersonate local administrator accounts.

In brief: KnowledgeDeliver zero-day exploited to deploy the Bluebeam malware, a FortiClient EMS flaw abused in EKZ Infostealer attacks, and more.

The threat actors appear to have abused trusted management channels to execute malicious PowerShell commands across connected systems.

The campaign targets border routers and network infrastructure rather than traditional endpoints.

Ajax first disclosed the breach in March, revealing that attackers exploited vulnerabilities in its IT infrastructure to access personal data.

The coordinated operation disrupted all Glassworm’s communication channels, cutting operators off from infected systems.

The UK action largely targets the A7 network, which officials say is a critical tool for sanctions circumvention and facilitating payments connected to Russian oil exports.

The updated InvisibleFerret malware is now distributed as .pyd files on Windows and .so files on macOS.

The group developed and sold phishing and smishing tools that allowed other criminals to steal banking information from victims.