Within a short span of its discovery, the Egregor ransomware has been linked to alleged attacks against organizations such as GEFCO, Crytek, Ubisoft, and Barnes & Noble, with the latest being Cencosud.

As we approach the U.S. tax season, security experts are warning about Mount Locker ransomware actors who are prepping their attacks to specifically target users of the TurboTax software.

According to recent research, OceanLotus (also known as APT32) has launched a campaign against the Cambodian government leveraging an ASEAN-themed spear-phishing attack.

Bitdefender researchers discovered a Chinese APT group stealthily attack Southeast Asian governments. Although much of the C&C servers were found to be offline, the operations are still functional.

As the need for healthcare and pharmaceutical organizations during the pandemic increases more than ever, APT groups are ramping up their attacks on these institutions to steal critical research.

This year, URL redirection has featured in a variety of attacks campaigns, including malvertising attacks, tech support scams, brand impersonation attacks, and more.

Dragos researchers have found multiple ransomware strains, such as Clop, EKANS, and Megacortex, adopting ICS-aware functionality, including the ability to kill industrial processes.

Researchers at Malwarebytes discovered yet another Malsmoke campaign that appears to have begun mid-October, using malvertising attacks to trick adult site users into downloading a fake Java update.

TroubleGrabber is a credential stealer that spreads through Discord attachments and leverages Discord webhooks to deliver the stolen information to the malware operators.

Symantec discovered a massive global campaign by APT10, or Cicada, targeting automotive and industrial businesses exploiting the recently-disclosed ZeroLogon vulnerability.