Bluelight is a malware family tracked across 2 threat clusters and 2 intelligence report mentions on ThreatCluster. First observed February 27, 2026; most recent activity April 22, 2026.
North Korean threat group APT37 has initiated a campaign named Ruby Jumper, utilizing new custom malware to target air-gapped systems, which are typically isolated from the internet. This marks a significant advancement…
Recent reports detail the tactics employed by various cyber adversaries to enumerate files and directories on compromised systems. Adversaries utilize command shell utilities and custom tools to gather sensitive…