Infosecurity Magazine

Advanced Persistent Threats News

Scroll down for the latest news and information covering advanced persistent threats.

Latest News and Features

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

News

Sysdig has found sophisticated malicious campaigns exploiting React2Shell that delivered EtherRAT and suggested North Korean hackers’ involvement

React2Shell Under Active Exploitation by China-Nexus Hackers

News

Barts Health Seeks High Court Ban After Oracle EBS Breach

News

China-Linked Warp Panda Targets North American Firms in Espionage Campaign

News

Disinformation and Cyber-Threats Among Top Global Exec Concerns

News

A new WEF report reveals that AI-powered threats like disinformation are among executives’ biggest concerns

Pall Mall Process to Define Responsible Commercial Cyber Intrusion

News

The Pall Mall Process begins outreach to define guidelines for private commercial intrusion industry

Bloody Wolf Threat Actor Expands Activity Across Central Asia

News

Scattered Lapsus$ Hunters Take Aim At Zendesk Users

News

Smishing Triad Impersonation Campaigns Expand Globally

News

New FlexibleFerret Malware Chain Targets macOS With Go Backdoor

News

White Papers

Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity Operations in 2024

White Paper

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

NCSC Cyber Essentials Guide

White Paper

On-Demand Webinars

  • Unpacking the Top Vulnerabilities Exploited by Sophisticated Attackers
  • Strategic Shield: Leveraging Threat Intelligence for Security Resilience
  • The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
  • Discover Unknown Vulnerabilities with Crowdsourced Security
  • Learn How to Reduce Business Costs with Ransomware Readiness
  • How a Threat Response Unit Unmasks a Hacker
  • Leveraging Endpoint Security to Navigate the Modern Threat Landscape
  • Updating Your Active Directory Security to the Modern Threat Environment
  • How to Prepare Your Organization’s Response to the Next Cyber Incident
  • Thwarting Insider Threats with IAM and Log Forensics

Podcasts

  • How 2025 Shaped the Future of Cybersecurity
  • ToolShell Deep Dive: The SharePoint Exploit Crisis Uncovered
  • One year since the outbreak of war in Ukraine, the team discusses the evolution of Russia-aligned cyber-attacks and the changes to cybercriminal victimology and motivations.
  • Hear from CISA’s Deputy Mission Coordinator for Threat Hunting, Jillian Rucker, and payment security expert, Neira Jones.
  • The team looks at some of the Cybersecurity Awareness Month campaigns and other efforts focusing how to thwart phishing, smishing and vishing.
  • Jan Carrol talks to us about her journey into cybersecurity, the cyber-security skills gap and how she set up her company, the Fortify Institute.
  • Beth Maundrill and James Coker analyze Insider Threats as September is National Insider Threats Awareness Month.
  • Into Security Podcast - Episode 5

More news and features

UNC2891 Money Mule Network Reveals Full Scope of ATM Fraud Operation

News

A multi-year ATM fraud campaign by UNC2891 targeted two Indonesian banks, cloning cards, recruiting money mules and coordinating cash withdrawals

PlushDaemon Hackers Unleash New Malware in China-Aligned Spy Campaigns

News

China-Linked Operation “WrtHug” Hijacks Thousands of ASUS Routers

News

New npm Malware Campaign Redirects Victims to Crypto Sites

News

Kraken Uses Benchmarking to Enhance Ransomware Attacks

News

US: Five Plead Guilty in North Korean IT Worker Fraud Scheme

News

The five defendants allegedly assisted North Korean hackers with obtaining remote IT employment with US companies

Cyber-Attack Costs Carmaker JLR $258m in Q2

News

Chinese Hackers Automate Cyber-Attacks With AI-Powered Claude Code

News

Synnovis Finally Issues Breach Notification After 2024 Ransomware Attack

News

Android Devices Targeted By KONNI APT in Find Hub Exploitation

News

A new cyber-attack has been observed exploiting Google Find Hub to remotely wipe Android devices, linked to North Korean APTs

Blogs

Energy Operations: Managing Password Security and Continuity

Blog

Securing AI for Cyber Resilience: Building Trustworthy and Secure AI Systems

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen