Threat actors stories - Page 7

Vane Viper, a threat actor posing as an adtech firm, generated over 1 trillion DNS queries last year linked to malware and ad fraud, warns Infoblox.

Oyster Backdoor malware, disguised as WinSCP and PuTTY, targets healthcare IT professionals to enable ransomware operations like Rhysida, warns BlueVoyant.

Ransomware attacks surge to 20 daily incidents in 2025H1, with healthcare facing increased cyber threats and hackers targeting overlooked IoT devices worldwide.

Proofpoint exposes phishing attacks using fake Microsoft apps to bypass MFA and hijack Microsoft 365 accounts, affecting thousands globally in 2025.

LevelBlue and Akamai have teamed up to offer a managed web app and API security service, tackling rising threats with AI-driven, 24/7 protection and expert support.

Black Kite has launched its Adversary Susceptibility Index to help firms spot which suppliers are most exposed to specific cyber threat actors, enhancing risk management.

SquareX launches two open-source toolkits to help security teams simulate and defend against browser-based attacks that evade traditional enterprise defences.

Infoblox's 2025 report reveals a surge in AI-driven DNS threats and widespread malicious adtech affecting global organisations, urging proactive cyber defence.

BeyondTrust launches Phantom Labs, a specialised team to research identity security threats and enhance protection against identity exploitation in hybrid and cloud environments.

Infoblox reports a surge in AI-driven DNS threats and malicious adtech, with 25% of new domains found malicious, urging firms to adopt proactive cyber defences.

CrowdStrike warns that generative AI is fuelling a surge in cyberattacks, targeting cloud systems, AI agents, and escalating sophisticated social engineering globally.

Global ransomware attacks fell 43% in Q2 to 371 cases in June, but evolving tactics signal persistent threats amid rising cyber warfare and political motives.

Organisations face doubled key cyber exposure risks as digital attack surfaces widen, with exposed ports and credentials surging in early 2025, says ReliaQuest.

A critical zero-day flaw in Microsoft SharePoint is being actively exploited globally, prompting urgent patches to prevent unauthorised server access and data breaches.

Q2 2025 saw a 14.47% drop in active ransomware groups but a 41.18% rise year-on-year, with new alliances and arrests shaking the cybercrime landscape.

A critical zero-day flaw in Microsoft SharePoint Server enabling remote code execution is actively exploited, urging firms to act fast amid no current patch available.

Ransomware, AI-powered attacks and vendor risks drive billions in cyber breach costs in 2025, with retail the hardest hit sector globally.

Security scores for hybrid identity systems drop to 61 in 2025, with mid-sized companies and government sectors facing the biggest vulnerability challenges.

Keymous+, a North African hacker group, has claimed over 700 DDoS attacks since 2023, blurring lines between hacktivism and commercial cyber operations.

Ingram Micro suffered a ransomware attack via a third-party VPN, underscoring the risks posed by remote access and external supplier vulnerabilities.