Threat actors stories - Page 2

A Chinese cyber group has targeted US government and policy organisations with spearphishing attacks amid trade talks, using advanced tactics to gain persistent access.

Vane Viper, a threat actor posing as an adtech firm, generated over 1 trillion DNS queries last year linked to malware and ad fraud, warns Infoblox.

Lazarus subgroup deploys three remote access trojans, including PondRAT and ThemeForestRAT, to target financial and cryptocurrency organisations with advanced cyberattacks.

Bell launched Bell Cyber, aiming to build a CAD $1 billion AI-powered solutions business amid rising cyber threats in Canada.

Oyster Backdoor malware, disguised as WinSCP and PuTTY, targets healthcare IT professionals to enable ransomware operations like Rhysida, warns BlueVoyant.

Proactive threat intelligence enables organisations to anticipate cyber threats, enhancing security resilience and shifting focus from reactive to preventive defence strategies.

Ransomware attacks surge to 20 daily incidents in 2025H1, with healthcare facing increased cyber threats and hackers targeting overlooked IoT devices worldwide.

Proofpoint exposes phishing attacks using fake Microsoft apps to bypass MFA and hijack Microsoft 365 accounts, affecting thousands globally in 2025.

Half of Australian government agencies have not adopted the strongest email security, risking cyberattacks on sensitive public sector data and communications.

LevelBlue and Akamai have teamed up to offer a managed web app and API security service, tackling rising threats with AI-driven, 24/7 protection and expert support.

Ransomware attacks in Australia and New Zealand have surged, with one in three incidents repeated and executives facing rising physical threats, warns new report.

Black Kite has launched its Adversary Susceptibility Index to help firms spot which suppliers are most exposed to specific cyber threat actors, enhancing risk management.

Picus Security and ThreatConnect launch a new module that quantifies cyber risk in monetary terms using real-world attack simulations and financial modelling.

DDoS attacks in APAC have surged 364% year-on-year, driven by AI and hacktivists, with service providers and government bodies as prime targets.

SquareX launches two open-source toolkits to help security teams simulate and defend against browser-based attacks that evade traditional enterprise defences.

Infoblox's 2025 report reveals a surge in AI-driven DNS threats and widespread malicious adtech affecting global organisations, urging proactive cyber defence.

BeyondTrust launches Phantom Labs, a specialised team to research identity security threats and enhance protection against identity exploitation in hybrid and cloud environments.

Infoblox reports a surge in AI-driven DNS threats and malicious adtech, with 25% of new domains found malicious, urging firms to adopt proactive cyber defences.

CrowdStrike warns that generative AI is fuelling a surge in cyberattacks, targeting cloud systems, AI agents, and escalating sophisticated social engineering globally.

Quadruple extortion ransomware, including DDoS attacks and partner pressures, is rising in Asia Pacific, intensifying cybercrime risks across critical sectors.