#spear-phishing

[ follow ]
Information security
fromThe Hacker News
2 days ago

Iranian Hackers Exploit 100+ Embassy Email Accounts in Global Phishing Targeting Diplomats

Iran-aligned operators conducted a coordinated multi-wave spear-phishing campaign targeting embassies and consulates worldwide to deploy malware via malicious Word VBA macros.
fromThe Hacker News
4 days ago

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

The digital missive contains a ZIP archive attachment that contains a Windows shortcut (LNK) masquerading as a PDF document, which, when opened, launches the newsletter as a decoy while dropping RokRAT on the infected host. RokRAT is a known malware associated with APT37, with the tool capable of collecting system information, executing arbitrary commands, enumerating the file system, capturing screenshots, and downloading additional payloads. The gathered data is exfiltrated via Dropbox, Google Cloud, pCloud, and Yandex Cloud.
Information security
fromIT Pro
1 week ago

Watch out for fake Zoom invites - hackers are abusing ConnectWise ScreenConnect to take over devices

To manipulate targets into engaging and downloading ScreenConnect, the attackers employ advanced deception techniques built around impressive impersonations and familiar business contexts, effectively creating workflows that align with end-user expectations,
Information security
Information security
fromThe Hacker News
1 week ago

ShadowSilk Hits 36 Government Targets in Central Asia and APAC Using Telegram Bots

ShadowSilk conducts spear-phishing campaigns to exfiltrate data from government organizations across Central Asia and APAC, leveraging YoroTrooper-related tooling and bilingual operators.
Information security
fromThe Hacker News
1 week ago

Blind Eagle's Five Clusters Target Colombia Using RATs, Phishing Lures, and Dynamic DNS Infra

Blind Eagle conducted espionage and financially motivated intrusions targeting Colombian government and regional organizations using RATs, spear-phishing, legitimate services, and geofencing.
Information security
fromThe Hacker News
1 week ago

Transparent Tribe Targets Indian Govt With Weaponized Desktop Shortcuts via Phishing

Transparent Tribe (APT36) targets Indian government Windows and BOSS Linux systems using spear-phishing with weaponized .desktop files that deploy Go-based backdoors and persistent cron jobs.
Information security
fromThe Hacker News
2 weeks ago

North Korea Uses GitHub in Diplomat Cyber Attacks as IT Worker Scheme Hits 320+ Firms

North Korean group Kimsuky used spear-phishing, cloud storage, and GitHub-based command-and-control to deploy Xeno RAT against South Korean diplomatic missions March–July 2025.
fromThe Hacker News
2 weeks ago

Noodlophile Malware Campaign Expands Global Reach with Copyright Phishing Lures

The Noodlophile campaign, active for over a year, now leverages advanced spear-phishing emails posing as copyright infringement notices, tailored with reconnaissance-derived details like specific Facebook Page IDs and company ownership information.
Information security
#cybersecurity
Information security
fromThe Hacker News
3 months ago

South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware

SideWinder targets government institutions in Sri Lanka, Bangladesh, and Pakistan using spear-phishing with geofenced payloads to deploy StealerBot.
Growth hacking
fromThe Hacker News
3 months ago

Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization

Threat actor UnsolicitedBooker targets international organizations with a backdoor named MarsSnake, using spear-phishing tactics involving flight tickets.
fromThe Hacker News
4 months ago

Malware Attack Targets World Uyghur Congress Leaders via Trojanized UyghurEdit++ Tool

"Although the malware itself was not particularly advanced, the delivery of the malware was extremely well customized to reach the target population..."
Privacy professionals
[ Load more ]