Cozy Bear is a apt_group tracked across 8 threat clusters and 9 intelligence report mentions on ThreatCluster. First observed November 20, 2025; most recent activity June 15, 2026.
Russian state-backed hackers from APT28 are actively exploiting a high-severity stored cross-site scripting vulnerability (CVE-2025-66376) in the Zimbra Collaboration Suite (ZCS) to target Ukrainian government entities.…
ESET's latest APT Activity Report reveals that from October 2025 to March 2026, China-aligned threat actors engaged in extensive espionage campaigns, particularly in Venezuela and the Gulf region. Following U.S.…
Azerbaijan has created a National Cybersecurity Agency (NCA) to combat increasing cyber threats from Russia and Iran. This decision follows a significant cyberattack in February 2025 attributed to the Russian group…
A series of fraudulent apps named CallPhantom were discovered on Google Play, promising access to call histories for any phone number. Users were tricked into paying for subscriptions, only to receive fabricated data.…
The Silver Fox APT group has launched a campaign targeting users in China by distributing malware through fake installers of popular applications, including Microsoft Teams. The malware, known as ValleyRAT, employs…
The SEC has dropped its civil fraud case against SolarWinds and its CISO, Tim Brown, related to the 2020 SUNBURST cyberattack. This decision ends a significant legal action that aimed to hold the company accountable for…
The SEC has dropped its case against SolarWinds and its CISO, Tim Brown, regarding their handling of a 2020 cyberattack linked to Russian hackers. The lawsuit, initiated in late 2023, accused them of failing to disclose…
Bitdefender GravityZone Business Security Enterprise achieved 100% relevant telemetry in AV-Comparatives’ inaugural EDR Detection Validation Certification Test published in May 2026. This certification tested the…