cyber espionage

Chinese hackers breached North American research institutions via REDCap servers

China, cyber espionage, Google, Government, Malware, News, USA /

Chinese hackers breached North American research institutions via REDCap servers 2026-06-15 at 21:41 By Sinisa Markovic A China-linked cyber espionage operation targeted North American medical research institutions through compromised REDCap servers, using custom malware to gain persistent access and collect sensitive information, Google’s Threat Intelligence Group (GTIG) researchers found. UNC6508 exploits vulnerable REDCap servers GTIG […]

Chinese hackers breached North American research institutions via REDCap servers Read More »

FBI seizes 13 websites linked to alleged Chinese intelligence-gathering effort

China, cyber espionage, FBI, Government, News, US DoJ, USA /

FBI seizes 13 websites linked to alleged Chinese intelligence-gathering effort 2026-06-11 at 17:12 By Sinisa Markovic Federal authorities have seized 13 internet domains allegedly used to target current and former U.S. government employees and military personnel with access to classified and sensitive information. The post FBI seizes 13 websites linked to alleged Chinese intelligence-gathering effort

FBI seizes 13 websites linked to alleged Chinese intelligence-gathering effort Read More »

Alleged Chinese hacker extradited to US over cyberattacks targeting COVID-19 research

China, cyber espionage, FBI, law enforcement, News, USA /

Alleged Chinese hacker extradited to US over cyberattacks targeting COVID-19 research 2026-04-28 at 22:35 By Sinisa Markovic Chinese national Xu Zewei was extradited from Italy to the United States to face charges tied to an alleged cyber espionage campaign that breached thousands of computers worldwide. Xu is charged alongside Zhang Yu, who remains at large.

Alleged Chinese hacker extradited to US over cyberattacks targeting COVID-19 research Read More »

Compromised everyday devices power Chinese cyber espionage operations

China, cyber espionage, cybersecurity, Government, NCSC, News, UK /

Compromised everyday devices power Chinese cyber espionage operations 2026-04-24 at 13:17 By Sinisa Markovic China-linked threat actors have shifted from individually procured infrastructure to large-scale covert networks, botnets built from compromised routers and other edge devices, the National Cyber Security Centre (NCSC) warns. To help organizations address this threat, the NCSC, together with the Cyber

Compromised everyday devices power Chinese cyber espionage operations Read More »

Russian hackers hijack internet traffic using vulnerable routers

cyber espionage, EU, News, router, Russian Federation, UK /

Russian hackers hijack internet traffic using vulnerable routers 2026-04-07 at 19:18 By Sinisa Markovic The Russian state cyber group APT28 has been compromising routers to hijack web traffic and spy on victims, the UK’s The National Cyber Security Centre (NCSC) has warned. Attackers are exploiting vulnerable routers to alter DHCP and DNS settings, redirecting traffic

Russian hackers hijack internet traffic using vulnerable routers Read More »

TrueConf zero-day vulnerability exploited to target government networks

Check Point, cyber espionage, Don't miss, Government, Malware, News, video conferencing /

TrueConf zero-day vulnerability exploited to target government networks 2026-04-02 at 12:02 By Sinisa Markovic Suspected China-nexus attackers have leveraged a zero-day vulnerability (CVE-2026-3502) in the TrueConf client application to distribute malware within government networks in Southeast Asia, Check Point researchers discovered. Malicious client update attack chain (Source: Check Point) Trusted update mechanism turned into attack

TrueConf zero-day vulnerability exploited to target government networks Read More »

Mission to smuggle $170 million worth of AI tech to China collapsed for three men

cyber espionage, cybercrime, FBI, law enforcement, News, USA /

Mission to smuggle $170 million worth of AI tech to China collapsed for three men 2026-03-26 at 15:52 By Sinisa Markovic Three individuals, Stanley Yi Zheng, Matthew Kelly, and Tommy Shad English, have been charged with conspiracy to commit smuggling and export control violations after allegedly attempting to procure millions of dollars’ worth of restricted

Mission to smuggle $170 million worth of AI tech to China collapsed for three men Read More »

Russian hackers go after high-value targets through Signal

CISA, cyber espionage, FBI, Government, News, phishing, Russian Federation, Signal /

Russian hackers go after high-value targets through Signal 2026-03-23 at 11:20 By Sinisa Markovic Russian intelligence-linked hackers are targeting commercial messaging platforms, with Signal a primary focus, the FBI and CISA warn. The campaign is aimed at individuals of intelligence interest, including government personnel, journalists, and others with access to sensitive communications. It is believed

Russian hackers go after high-value targets through Signal Read More »

DarkSword: Researchers uncover another iOS exploit kit

cyber espionage, cybercrime, data theft, Don't miss, exploit kit, Google, Hot stuff, iOS, iPhone, iVerify, Lookout, News /

DarkSword: Researchers uncover another iOS exploit kit 2026-03-19 at 16:54 By Zeljka Zorz A powerful iPhone hacking toolkit dubbed “DarkSword” has been used since November 2025 to compromise devices by exploiting zero-day iOS vulnerabilities, Google researchers have shared. iOS vulnerabilities exploited by DarkSword Two weeks ago, Google Threat Intelligence Group (GTIG) and iVerify disclosed the

DarkSword: Researchers uncover another iOS exploit kit Read More »

Elite members of North Korean society fake their way into Western paychecks

cyber espionage, cybercrime, Flare, IBM X-Force, News, North Korea, remote working /

Elite members of North Korean society fake their way into Western paychecks 2026-03-19 at 09:02 By Sinisa Markovic Increased federal activity, including indictments over the past year, has drawn attention to a pattern that has been unfolding inside corporate hiring pipelines. North Korean nationals are securing roles as remote IT contractors and full-time staff within

Elite members of North Korean society fake their way into Western paychecks Read More »

Iran-linked APT targets US critical sectors with new backdoors

APT, backdoor, Carbon Black, Ctrl-Alt-Intel, cyber espionage, Don't miss, Hot stuff, Iran, Israel, News, Symantec, USA /

Iran-linked APT targets US critical sectors with new backdoors 2026-03-06 at 15:56 By Zeljka Zorz An Iran-linked hacking group has been active inside the networks of several US organizations since early February, raising concerns that the activity could precede broader cyber operations connected to escalating geopolitical tensions in the Middle East. New backdoors used by

Iran-linked APT targets US critical sectors with new backdoors Read More »

Coruna: Spy-grade iOS exploit kit powering financial crime

CVE, cyber espionage, cybercrime, Don't miss, exploit kit, Google, Hot stuff, iOS, Mandiant, News, surveillance, vulnerability /

Coruna: Spy-grade iOS exploit kit powering financial crime 2026-03-03 at 21:02 By Zeljka Zorz A powerful iOS exploit kit has circulated among multiple threat actors over the past year, moving from a commercial surveillance operation to state-linked espionage campaigns and, ultimately, ended into the hands of financially motivated hackers, according to new research from Google’s

Coruna: Spy-grade iOS exploit kit powering financial crime Read More »

Ex-L3Harris executive sentenced to 87 months for selling stolen cyber-exploit trade secrets

cyber espionage, Government, News, Russian Federation, US DoJ, USA /

Ex-L3Harris executive sentenced to 87 months for selling stolen cyber-exploit trade secrets 2026-02-25 at 12:15 By Sinisa Markovic Peter Williams, a former executive of Trenchant, L3Harris’ cyber division, has been sentenced to 87 months in prison by a federal judge in Washington, D.C., after pleading guilty to stealing and selling sensitive cyber-exploit trade secrets to

Ex-L3Harris executive sentenced to 87 months for selling stolen cyber-exploit trade secrets Read More »

State-backed phishing attacks targeting military officials and journalists on Signal

cyber espionage, Don't miss, Europe, Germany, government-backed attacks, Hot stuff, News, phishing, Signal /

State-backed phishing attacks targeting military officials and journalists on Signal 2026-02-06 at 16:53 By Zeljka Zorz German security authorities are warning that a likely state-backed hacking group is engaged in attempts at phishing senior political figures, military officials, diplomats, and investigative journalists across Germany and Europe via Signal. The authorities also noted that while these

State-backed phishing attacks targeting military officials and journalists on Signal Read More »

Russian hackers are exploiting recently patched Microsoft Office vulnerability (CVE-2026-21509)

APT, CERT-UA, cyber espionage, Don't miss, government-backed attacks, Hot stuff, Microsoft, MS Office, News, vulnerability, Zscaler /

Russian hackers are exploiting recently patched Microsoft Office vulnerability (CVE-2026-21509) 2026-02-03 at 17:21 By Zeljka Zorz Russian state-sponsored hackers Fancy Bear (aka APT 28) are exploiting CVE-2026-21509, a Microsoft Office vulnerability for which Microsoft released an emergency fix last week. The exploitation CVE-2026-21509 allows unauthorized attackers to bypass a security feature (OLE mitigations in Microsoft

Russian hackers are exploiting recently patched Microsoft Office vulnerability (CVE-2026-21509) Read More »

Notepad++ supply chain attack: Researchers reveal details, IoCs, targets

APT, Asia, China, cyber espionage, Don't miss, government-backed attacks, Hot stuff, Kaspersky, News, Rapid7 /

Notepad++ supply chain attack: Researchers reveal details, IoCs, targets 2026-02-03 at 15:34 By Zeljka Zorz Rapid7 researchers have attributed the recent hijacking of the Notepad++ update mechanism to Lotus Blossom (aka Billbug), a Chinese state-sponsored group known for targeting organizations in Southeast Asia for espionage purposes. On Wednesday, Kaspersky researchers shared the insights they’ve gleaned

Notepad++ supply chain attack: Researchers reveal details, IoCs, targets Read More »

Ex-Google engineer found guilty of stealing AI secrets

China, cyber espionage, cybercrime, FBI, Google, Government, News, US DoJ, USA /

Ex-Google engineer found guilty of stealing AI secrets 2026-01-30 at 12:40 By Sinisa Markovic A federal jury in California convicted former Google software engineer Linwei Ding, also known as Leon Ding, on seven counts of economic espionage and seven counts of theft of trade secrets tied to AI technology. Ding faces a maximum sentence of

Ex-Google engineer found guilty of stealing AI secrets Read More »

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393)

APT, backdoor, China, Cisco, cyber espionage, Don't miss, email security, enterprise, Hot stuff, News /

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393) 2026-01-16 at 17:05 By Zeljka Zorz Cisco has finally shipped security updates for its Email Security Gateway and Secure Email and Web Manager devices, which fix CVE-2025-20393, a vulnerability in the devices’ AsyncOS that has been exploited as a zero-day by suspected Chinese attackers since at

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393) Read More »

Cisco email security appliances rooted and backdoored via still unpatched zero-day

APT, backdoor, China, Cisco, cyber espionage, Don't miss, email security, enterprise, Hot stuff, News /

Cisco email security appliances rooted and backdoored via still unpatched zero-day 2025-12-17 at 21:47 By Zeljka Zorz A suspected Chinese-nexus threat group has been compromising Cisco email security devices and planting backdoors and log-purging tools on them since at least late November 2025, Cisco Talos researchers have shared. “Our analysis indicates that appliances with non-standard

Cisco email security appliances rooted and backdoored via still unpatched zero-day Read More »

How a noisy ransomware intrusion exposed a long-term espionage foothold

APT, cyber espionage, cybercriminals, Don't miss, Hot stuff, News, Positive Technologies, Ransomware, threat detection /

How a noisy ransomware intrusion exposed a long-term espionage foothold 2025-12-02 at 15:15 By Zeljka Zorz Getting breached by two separate and likely unconnected cyber attack groups is a nightmare scenario for any organization, but can result in an unexpected silver lining: the noisier intrusion can draw attention to a far stealthier threat that might

How a noisy ransomware intrusion exposed a long-term espionage foothold Read More »

Scroll to Top