Cybercriminals are getting smarter every day, and FileFix is proof. This isn’t your run-of-the-mill phishing scam. It’s a cleverly engineered attack that uses hidden tricks inside images (steganography) to deliver StealC malware onto unsuspecting systems quietly. The scariest part? Victims don’t even download a suspicious file. Instead, they copy what looks like a harmless file path and paste it…

Read More “Could a copied File-Fix link be hiding malware?” »

This week’s cybersecurity landscape highlights how both private enterprises and government institutions remain under relentless attack from a variety of threat actors. From ransomware gangs targeting ministries in Latin America to critical vulnerabilities in industrial systems, the risks continue to evolve across geographies and sectors. Key incidents include breaches at Plex, LNER, and Vietnam’s National…

Read More “Weekly Cyber Intelligence Brief Global Threats & Breaches” »

This week’s Cybersecurity Intelligence Weekly (Sept 1–7, 2025) highlights a series of high-impact incidents shaping the global threat landscape. From large-scale manufacturing disruptions at Jaguar Land Rover and Bridgestone to critical zero-day exploits in WhatsApp, Apple, and Sitecore, the week underscores the growing risks faced by enterprises and individuals alike. The report also covers state-sponsored campaigns, massive…

Read More “Cybersecurity Intelligence Weekly, Global Threat Landscape (Sept 1–7, 2025)” »

APT29 compromised popular sites by injecting obfuscated JavaScript that quietly redirected around 10% of visitors to actor‑controlled domains. These pages mimicked Cloudflare’s auth flow exactly, leading users to generate and enter Microsoft device authentication codes effectively allowing attackers to enroll their own devices. Who’s Affected & What’s at RiskAny user visiting a compromised website could…

Read More “Amazon Disrupts APT29 Watering Hole Campaign” »

During the 12-day conflict in June 2025, Iranian state-sponsored hacking groups and hacktivist proxies operated with greater coordination against Israel than previously documented, according to research from Security Scorecard’s STRIKE Team and the Middle East Institute. More than 178 Iranian-affiliated actors conducted operations ranging from influence campaigns to data theft. The state-backed group Imperial Kitten…

Read More “Iranian Cyber Offensive Shows Unprecedented Coordination” »

Cybersecurity firm Guardio has uncovered a new campaign, ClickFix, that weaponizes fake CAPTCHA verification pages to trick users into executing malicious commands marking a major evolution from 2024’s fake browser update scams. Victims encounter CAPTCHA pages branded with Google reCAPTCHA or Cloudflare logos, but instead of solving a puzzle, they’re instructed to perform keyboard shortcuts…

Read More “CAPTCHA geddon’ Click Fix Malware Campaign Emerges” »

Researchers from Palo Alto Networks Unit 42 have uncovered a state-sponsored Chinese threat actor tracked as Storm-2603 by Microsoft and CL-CRI-1040 by Unit 42 exploiting four critical Microsoft SharePoint vulnerabilities (CVE-2025–49704, CVE-2025–49706, CVE-2025–53770, CVE-2025–53771) to deliver a custom malware suite dubbed Project AK47. Active since March 2025, the campaign uses the ToolShell exploit chain to…

Read More “Chinese Hackers Exploit SharePoint Flaws in ‘Project AK47’ Campaign” »