T1566.002 - Spearphishing Link is a mitre_attack tracked across 50 threat clusters and 792 intelligence report mentions on ThreatCluster. First observed October 31, 2025; most recent activity July 17, 2026.
A cybersecurity incident involved a fake job interview scheme on Wellfound, where an operator named 'Felix' from 'HyperHive' targeted an individual using a social engineering tactic referencing their real CV. The attack…
On June 25, 2026, Ukraine's Security Service (SBU) and the FBI announced a coordinated cyber campaign by Russian intelligence targeting messaging accounts of officials, military personnel, politicians, and activists in…
On June 18, 2026, international law enforcement agencies launched Operation Endgame, disrupting the SocGholish malware infrastructure linked to the Russian cybercrime group Evil Corp. The operation resulted in the…
The Gamaredon group, a Russian-aligned APT, has significantly upgraded its cyber capabilities in 2025, focusing on spear-phishing campaigns against Ukrainian targets. ESET Research reports that Gamaredon conducted 35…
The Lazarus Group, a North Korea-linked cybercrime organization, has intensified its operations against financial and cryptocurrency sectors using a sophisticated fileless Remote Access Trojan (RAT) called RemotePE.…
Iranian state-aligned hackers, known as Nimbus Manticore (UNC1549), have intensified cyberattacks against the US aviation sector amid the ongoing US-Iran military conflict. Utilizing career-themed phishing and a novel…
Russian cyber group APT28, also known as Fancy Bear, has been exploiting vulnerabilities in TP-Link and MikroTik routers to conduct large-scale DNS hijacking operations. This campaign, which has affected over 18,000…
The 'DarkSword' attack is now exploiting unpatched iPhones through phishing emails, as reported by Proofpoint. These emails contain links to malicious sites that host DarkSword, targeting iPhones running iOS versions…
The US Department of State has announced a reward of up to $10 million for information on two Russian-linked hacking groups, UNC5792 and UNC4221, accused of phishing attacks on Signal and WhatsApp users. These groups…
On May 29, 2026, Yury Hubarevich, a prominent Belarusian politician, was targeted in a phishing attack linked to the Belarusian espionage group UNC1151. The attack involved an email disguised as a Google notification,…