New data from Microsoft shows that Nobelium, Thallium, and other nation-state attack groups are increasingly focusing on government agencies and NGOs.
Researchers shed light on a malware loader that's been spotted consistently being spread via email spam messages over the past month.
Google researchers point to a resurgence in a decades-old session hijacking tactic, as seen in a recent phishing campaign.
A new email hijacking campaign by the TA551 attack group is installing the legitimate Sliver red-team tool as a payload, possibly for use in future ransomware operations.
Researchers observed known threat groups infecting victims with TrickBot for the first time in June, suggesting that the malware operators are expanding their distribution channels.