The infamous hacking collective known as Dragonfly has resurfaced, renewing its focus on targeting energy sector companies in the United States and Europe. Having been active since at least 2011, this well-resourced group is notorious for its sophisticated cyber-espionage campaigns aimed at critical infrastructure, particularly within the energy domain. Research…
Cybercriminals, notably state-sponsored hackers, have begun exploiting a newly uncovered vulnerability in Microsoft Office that the company has not classified as a security risk nor plans to address with a patch. This vulnerability involves the Dynamic Data Exchange (DDE) feature in Microsoft Office, which allows applications to share data seamlessly…
Exploitation of Critical PaperCut Vulnerability Raises Alarm in Cybersecurity Community Recent findings by cybersecurity researchers have uncovered a concerning method for exploiting a recently identified critical vulnerability in PaperCut servers, which appears to outsmart existing detection mechanisms. The flaw, cataloged as CVE-2023-27350 and carrying a CVSS score of 9.8, poses…
New Ransomware CACTUS Exploits VPN Vulnerabilities in Ongoing Cyber Attacks Cybersecurity researchers have identified a new strain of ransomware, dubbed CACTUS, which exploits known vulnerabilities in VPN appliances to gain entry into targeted networks. This ransomware variant has primarily targeted large commercial enterprises since its emergence in March 2023. Upon…
Between late December 2025 and mid-January 2026, a sophisticated cyber operation targeted government officials and international diplomats. Researchers from Dream Labs uncovered that the hackers, identified as the China-backed Mustang Panda group (also known as HoneyMyte), successfully impersonated U.S. and other international entities. They utilized counterfeit documents to deceive high-level…
Researchers have identified a significant vulnerability in the Credential Security Support Provider protocol (CredSSP), impacting all current versions of Windows. This flaw could empower remote attackers to exploit both Remote Desktop Protocol (RDP) and Windows Remote Management (WinRM) to gain unauthorized access to sensitive data and execute malicious code on…
In a recent development that recalls the infamous ‘Olympic Destroyer’ cyber attack from the 2018 Winter Olympics, the same group of hackers has emerged once again, this time targeting biological and chemical threat prevention laboratories across Europe and Ukraine, alongside several financial institutions in Russia. The malicious campaign reflects a…
Microsoft has announced the release of its July 2018 security patch updates, addressing a total of 53 vulnerabilities across various products, including Windows, Internet Explorer, Edge, and Microsoft Office, among others. This month’s updates target a wide range of systems and software, including the widely used Adobe Flash Player. Among…
Unpatched Citrix NetScaler Systems Targeted in Suspected Ransomware Attack Recent developments in cybersecurity have revealed that unpatched Citrix NetScaler systems facing the internet are being exploited by unidentified threat actors, likely in the context of a ransomware operation. Cybersecurity firm Sophos has identified this activity cluster as STAC4663, which is…
