During an investigation into suspected Iranian threat group ITG18, researchers found various security errors made by the attackers that gave them an inside look into their TTPs.
Researchers uncovered a flaw in macOS that could allow attackers to access permissions, like screen recording, on victim devices - without their approval.
Attackers are building innovative voice-based social engineering tactics into their malware and phishing campaigns.
The Transparent Tribe APT has evolved its lures, expanded its victimology and added a new malware family to its arsenal.
The newly disclosed Moriya rootkit has been used since at least 2018 in a campaign targeting large regional diplomatic organizations in Asia and Africa.