Infosecurity Magazine

Threat Intelligence News

Scroll down for all the latest threat intelligence news and articles.

Latest News and Features

OAuth Device Code Phishing Campaigns Surge Targets Microsoft 365

News

A surge in phishing attacks exploiting Microsoft’s OAuth device code flow has been identified by Proofpoint

New BeaverTail Malware Variant Linked to Lazarus Group

News

Chinese Ink Dragon Group Hides in European Government Networks

News

Top 10 Cyber-Attacks of 2025

News Feature

Amazon Warns Russian GRU Hackers Target Western Firms via Edge Devices

News

Amazon researchers believe this campaign is part of a bigger operation spearheaded by Russia’s military intelligence service, the GRU

Russian Phishing Campaign Delivers Phantom Stealer Via ISO Files

News

NCSC Plugs Gap in Cyber-Deception Guidance

News

Malware Discovered in 19 Visual Studio Code Extensions

News

ClickFix Social Engineering Sparks Rise of CastleLoader Attacks

News

Pro-Russia Hackers Target US Critical Infrastructure in New Wave

News

Pro-Russia hacktivist groups have been observed exploiting exposed virtual network computing connections to breach OT systems

White Papers

Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity Operations in 2024

White Paper

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

NCSC Cyber Essentials Guide

White Paper

On-Demand Webinars

  • Predicting and Prioritizing Cyber Attacks Using Threat Intelligence
  • How to Implement Attack Surface Management in the AI and Cloud Age
  • The Threat Intelligence Imperative: Transforming Risk into Cyber Resilience
  • Going Beyond Traditional Attack Surface Management with Cyber Threat Intelligence
  • Unpacking the Top Vulnerabilities Exploited by Sophisticated Attackers
  • Understand and Combat the Top Healthcare Cloud Threats Today
  • CISOs Redefined: External Threats, A Catalyst for Holistic Cybersecurity in 2024
  • Phishing, Impersonation, and Beyond: CISO Insights on 2023-2024 External Threats
  • Countering Today’s Top Email Threats: A Team Effort
  • Strategic Shield: Leveraging Threat Intelligence for Security Resilience

Podcasts

  • How 2025 Shaped the Future of Cybersecurity
  • Beyond Bug Bounties: How Private Researchers Are Taking Down Ransomware Operations
  • ToolShell Deep Dive: The SharePoint Exploit Crisis Uncovered
  • Vulnerability Overload: The NVD and CVE Challenges Ahead
  • The Information Heist: Cracking the Code on Infostealers
  • Inside Operation Cronos: Decoding LockBit's Downfall
  • Inside the MOVEit Attack: Decrypting Clop's TTPs and Empowering Cybersecurity Practitioners
  • One year since the outbreak of war in Ukraine, the team discusses the evolution of Russia-aligned cyber-attacks and the changes to cybercriminal victimology and motivations.
  • The team looks at some of the Cybersecurity Awareness Month campaigns and other efforts focusing how to thwart phishing, smishing and vishing.
  • Beth Maundrill and James Coker analyze Insider Threats as September is National Insider Threats Awareness Month.

More news and features

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

News

Malicious VS Code Extensions Deploy Advanced Infostealer

News

DeadLock Ransomware Uses BYOVD to Evade Security Measures

News

ClayRat Android Spyware Expands Capabilities

News

China-Linked Warp Panda Targets North American Firms in Espionage Campaign

News

CrowdStrike warned that Warp Panda, a China-linked cyber-espionage group, is targeting US organizations to steal sensitive data and support Beijing’s strategic interests

New GhostFrame Phishing Framework Hits Over One Million Attacks

News

The GhostFrame phishing framework, using stealthy iframes, was linked to over 1 million attacks

French NGO Reporters Without Borders Targeted by Star Blizzard

News

Yearn Finance yETH Pool Hit by $9M Exploit

News

Critical PickleScan Vulnerabilities Expose AI Model Supply Chains

News

ShadyPanda's Seven-Year Campaign Infects 4.3M Chrome and Edge Users

News

Infected 4.3 million Chrome and Edge users via extensions; ShadyPanda exploited browser marketplaces

Blogs

The Budget Effect of a Security Incident

Blog

Energy Operations: Managing Password Security and Continuity

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen