The Russian Sandworm threat actor has been deploying a new piece of malware called Cyclops Blink, warns CISA and NSA.
Researchers point to a possible common origin between the Dridex malware and Entropy ransomware due to code similarities.
Researchers detailed a threat actor that has launched campaigns targeting the transportation and manufacturing sector for five years.
Microsoft said the Actinium threat group (also known as Gamaredon) has been observed targeting government, military and law enforcement organizations in Ukraine with spear-phishing emails.
SEO-friendly websites promising Zoom or TeamViewer application installations are actually attacker-owned and deploy malware.