A China-aligned threat actor, TA416, has intensified its targeting of European government and diplomatic organizations since mid-2025, employing sophisticated phishing techniques and malware delivery methods.
A recent phishing campaign impersonating Ukraine's CERT-UA has attempted to distribute AGEWHEEZE malware to various organizations, with limited success.
The Handala Hack Team, associated with Iranian interests, has breached the personal email of FBI Director Kash Patel and executed a destructive attack on Stryker, a major medical device provider.
Microsoft has reported a significant phishing campaign exploiting the U.S. tax season, affecting approximately 29,000 users across various industries.
The FBI and CISA have reported a phishing campaign by Russian hackers aimed at compromising accounts on messaging platforms like Signal and WhatsApp, particularly targeting individuals of high intelligence value.
Microsoft has issued a warning regarding ongoing OAuth abuse scams that exploit phishing tactics to deliver malware, particularly targeting government and public-sector organizations.
Google's Threat Intelligence Group has attributed a previously undocumented hacking group, potentially linked to Russian intelligence, to a series of malware attacks against Ukrainian organizations using CANFAIL.
Recent cyber espionage campaigns have targeted Indian defense and government organizations using cross-platform remote access trojans (RATs).
A newly identified malicious add-in for Microsoft Outlook has been found to steal user credentials through a phishing scheme, affecting thousands of users.
A joint advisory from Germany's BfV and BSI highlights a phishing campaign exploiting the Signal messaging app, aimed at politicians, military personnel, and journalists.
