TA397, also known as Bitter, targeted a Turkish defense organization with a spearphishing email containing a RAR archive, which included…
BlueAlpha, a Russian state-sponsored group, is actively targeting Ukrainian individuals and organizations by using spearphishing emails with malicious HTML attachments…
IcePeony, a China-nexus APT group, has been active since 2023, targeting India, Mauritius, and Vietnam by exploiting SQL injection vulnerabilities…
Cluster Bravo, despite its brief initial activity, subsequently targeted 11 organizations in the same region, as researchers found that these…
ToddyCat is an APT group that has been active since December 2020, and primarily it targets the government and military…
The recent campaign targeting the Czech Republic involves a malicious ZIP file that contains a decoy LNK file and a…
Earth Baku, an APT actor who initially focused on the Indo-Pacific region, has grown its activities extensively since late 2022.…
Hackers often weaponize LNK files because they can carry malware into systems undetected by anyone. LNK files are shortcuts that,…