surveillance
-
Seedworm’s Evolution: Inside the Iranian-Linked APT’s Surgical Global Espionage Push
The advanced persistent threat (APT) group known as Seedworm—also identified by the monikers MuddyWater, Temp Zagros, and Static Kitten—has long…
Read More » -
The “ClaudeBleed” Vulnerability: How Architectural Trust Flaws Turn AI Assistants into Data Exfiltration Backdoors
In the rapid push to integrate Large Language Models (LLMs) into daily workflows, a critical security oversight has emerged. A…
Read More » -
Operation GriefLure: Precision Social Engineering Meets Modular Malware
Cybersecurity researchers have identified a highly sophisticated spear-phishing campaign, designated as Operation GriefLure, which targets high-ranking executives in Vietnam and…
Read More » -
The Rise of “Darkhub”: Analyzing a New Multi-Vector Hacking-for-Hire Marketplace
A sophisticated new player has emerged within the dark web ecosystem: Darkhub. This platform, operating via the Tor network, functions…
Read More » -
Deep Dive: How the CloudZ RAT Leverages Microsoft Phone Link for Mobile Data Exfiltration
In a sophisticated evolution of credential theft, a new modular Remote Access Trojan (RAT) known as CloudZ has surfaced, specifically…
Read More » -
Multiplatform Espionage: Deconstructing ScarCruft’s Sophisticated Supply-Chain Attack on Gaming Platforms
In a highly targeted display of cyber espionage, the North Korea-aligned APT group ScarCruft (also known as APT37 or Reaper)…
Read More » -
The Rise of Spyware-as-a-Service: How “KidsProtect” is Commercializing Digital Stalking
A sophisticated new threat is emerging in the Android ecosystem, signaling a dangerous shift in how surveillance malware is distributed.…
Read More » -
Iranian-Linked Hackers Leak Data on 2,379 U.S. Marines, Issue Threats
A cyberattack group with ties to Iran’s Ministry of Intelligence has escalated its campaign against the United States by leaking…
Read More » -
The “Banking KYC” Android Malware Campaign Targeting Indian Users
A sophisticated new Android malware campaign is currently circulating via WhatsApp, masquerading as an essential “Banking KYC” (Know Your Customer)…
Read More » -
Shadow Intelligence: Deconstructing the Vibing.exe Privacy Breach and the Governance Failure
A sophisticated privacy breach has surfaced involving a seemingly benign application known as Vibing.exe, sparking intense scrutiny within the cybersecurity…
Read More » -
Critical Authentication Bypass Vulnerability (CVE-2025-65856) in Hangzhou Xiongmai XM530 IP Cameras
A high-severity security flaw has been uncovered in the Hangzhou Xiongmai Technology XM530 series IP cameras, posing an imminent threat…
Read More » -
The Invisible Shadow: How Signaling Vulnerabilities Enable Global Mobile Surveillance
A groundbreaking investigation by Citizen Lab has pulled back the curtain on a series of sophisticated, multi-year surveillance campaigns that…
Read More » -
Security Advisory: Discovery of “Auraboros,” an Unauthenticated, High-Capability RAT Framework
In a significant finding for the threat intelligence community, a previously undocumented Remote Access Trojan (RAT) framework, dubbed Auraboros, has…
Read More » -
The Anthropic Paradox: Inside the NSA’s Secret Use of Mythos AI
The National Security Agency (NSA) has quietly integrated Anthropic’s highly restricted “Mythos” artificial intelligence model into its toolkit, operating in…
Read More » -
Emerging Android Banking Trojan Mirax: A Stealthy RAT with Residential Proxy Capabilities
A new Android banking trojan called Mirax is rapidly gaining traction in the cybercrime ecosystem, combining powerful remote access features…
Read More »