A UK national pleaded guilty today to extorting tens of companies across the world as a member of an infamous hacking group known as The Dark Overlord (TDO).

TrickBot appears to possess a treasure trove of compromised accesses that Lazarus can definitely leverage. Lazarus has previously been found using TrickBot’s codes in some of its attacks.

A security researcher demonstrated an intended design of Google App Engine's subdomain generator, which can be abused to use the app infrastructure for malicious purposes, while remaining undetected.

The operators of the Maze ransomware have added a fresh trick of distributing ransomware payloads via virtual machines (VMs), a practice earlier seen in Ragnar Locker's operations.

Two separate attack campaigns exploiting similar flaws could be just a coincidence but organizations leaving unpatched attack surfaces are unknowingly inviting threat actors on their networks.

The El Pais newspaper reported that Chinese hackers have stolen information from Spanish laboratories working on a vaccine for COVID19.

Also tracked as Barium, Wicked Panda, Winnti, and Wicked Spider, the cyber-espionage group is said to have hacked over 100 organizations worldwide.

US says the Iranian government used the "Rana Intelligence Computing Company" as a front for the APT39 hacking group.

One of the men indicted as part of APT41 — now 35-year-old Tan DaiLin — was the subject of a 2012 KrebsOnSecurity story that sought to shed light on a Chinese antivirus product marketed as Anvisoft.

Three Iranian nationals have been indicted on charges of hacking US aerospace and satellite companies, the US Department of Justice announced today.