Italy is a country tracked across 50 threat clusters and 395 intelligence report mentions on ThreatCluster. First observed October 29, 2025; most recent activity July 14, 2026.
The FBI and partners disrupted a covert network of compromised TP-Link and MikroTik routers exploited by the Russian GRU (APT28) to steal Outlook credentials. This operation, known as Operation Masquerade, revealed that…
A joint advisory from 21 global cybersecurity agencies warns that Russian state hackers from the FSB's Center 16 are exploiting poorly configured routers to infiltrate critical infrastructure networks worldwide. The…
On June 18, 2026, international law enforcement agencies launched Operation Endgame, disrupting the SocGholish malware infrastructure linked to the Russian cybercrime group Evil Corp. The operation resulted in the…
The European Union has condemned and sanctioned Russia for a prolonged cyber espionage campaign targeting its member states. The campaign, orchestrated by the 16th Centre of the FSB, has involved infiltrating government…
On March 10, 2026, members of the Tallinn Mechanism gathered in London to reaffirm their commitment to support Ukraine's civilian cyber defense against persistent Russian cyber attacks. Since December 2023, €302.6…
Elon Musk's SpaceX has curtailed access to Starlink satellite internet for Russian military forces, disrupting their communications. This action follows Ukraine's request to deactivate terminals used illicitly by…
During the G7 Summit in Évian-les-Bains from June 15 to 17, 2026, world leaders focused on North Korean cybercrimes, particularly cryptocurrency thefts. They reported that North Korean hacking groups stole approximately…
The China-aligned APT group Webworm has shifted its focus from Asia to Europe, targeting government organizations in Belgium, Italy, Poland, Serbia, and Spain during 2025. ESET researchers identified new backdoors,…
On March 22, 2026, President Donald Trump issued a 48-hour ultimatum to Iran, threatening to 'obliterate' its power plants if the Strait of Hormuz is not fully reopened. This comes as Iran launched missile attacks on…
A supply chain attack has compromised the DAEMON Tools software installers, which began on April 8, 2026. Kaspersky identified that these trojanized installers, signed with legitimate digital certificates, have affected…