Threat Watch

Read the latest cybersecurity news and insights from our industry experts

Daily articles & analysis by industry

Subscribe to Our Daily Newsletter

Outsmart your adversaries with daily views into the current threat landscape. The experts on our counterintelligence team analyze the latest cybersecurity news and offer insights that you can leverage to protect your business.

Latest Post

Threat Group Abuses Exchange Server Vulnerability to Access Building Automation Systems

A Chinese-speaking threat actor has hacked into the building automation systems (used to control HVAC, fire, and security functions) of several Asian organizations to backdoor …

Daily summaries of threats, delivered straight to your inbox!
 

View All Posts

Threat Group Abuses Exchange Server Vulnerability to Access Building Automation Systems

A Chinese-speaking threat actor has hacked into the building automation systems (used to control HVAC, fire, and security functions) of several Asian organizations to backdoor their networks and gain access …

Read More

LockBit 3.0 Ransomware Emerges with New Features and Bug Bounty Program

The LockBit ransomware group, which was estimated as being responsible for 40% of all reported ransomware attacks in May 2022 by NCC Group, recently launched a new iteration of its …

Read More

LGBTQ+ Community Warned of Extortionists Abusing Dating Apps

The U.S. Federal Trade Commission (FTC) is warning the LGTBQ+ community of targeted scams on dating apps. Threat actors are using multiple scams to target the LGTBQ+ community that include …

Read More

CISA Warns of Log4Shell Exploits Still Targeting VMware Servers

CISA has released a new report that outlines attacks that are still using the Log4Shell vulnerability (CVE-2021-44228) and targeting VMware Horizon and Unified Access Gateway (UAG) servers. Attackers can exploit …

Read More

LockBit 2.0 Leads Ransomware Attacks After Conti Shutdown

According to a report from the NCC Group’s threat intelligence team, LockBit 2.0 has continued to be the top infecting ransomware group, with 40% of May’s attacks being carried out …

Read More

Chinese Hackers Use Ransomware as Decoy for Cyber Espionage

Threat researchers believe two Chinese hacking groups are using ransomware attacks to cover up cyber espionage campaigns against western and Japanese companies. Chinese state-sponsored groups are in search of sensitive …

Read More

Flaw in SMA Technologies OpCon UNIX Agent Adds the Same SSH key to all Installations

On Tuesday the CERT Coordination Center at Carnegie Mellon University disclosed a vulnerability that affects the 21.2 and earlier versions of SMA Technologies’ OpCon UNIX agent. The vulnerability is identified …

Read More

Fancy Bear Uses Nuke Threat Lure to Exploit 1-Click Bug

APT group Fancy Bear, a Russian nation-state threat actor that has been involved in some prolific breaches, has been seen using nuclear war lures in their latest phishing campaigns. The …

Read More