Intelligence Feed
Real-time cybersecurity intelligence and threat analysis
2025-07-26 - Cluster AI Daily Threat Brief
# Daily Threat Intelligence Brief - July 26, 2025 ## Executive Summary Today's threat landscape remains dynamic and increasingly complex, with a notable rise in attacks targeting critical infrast...
New York Unveils 'Nation-Leading' Water Sector Cyber Rules
State Seeks Public Input on New Reporting Rules and Regulations for Water Sector New York State has unveiled a comprehensive set of water and wastewater cybersecurity regulations aimed at bolsterin...
Microsoft 365 Admin Center Outage Blocks Access for Admins Worldwide
Microsoft is currently facing an outage that affects the Microsoft 365 Admin Center, preventing administrators from accessing essential management tools. The issue, which emerged prominently on Jul...
New VOIP-Based Botnet Attacking Routers Configured With Default Password
A sophisticated global botnet campaign targeting VOIP-enabled routers and devices configured with default credentials. The discovery began when analysts noticed an unusual cluster of malicious IP ...
Microsoft SharePoint Hackers Switch Gears to Spread Ransomware
Recent attacks targeting Microsoft SharePoint have escalated, with threat actors now deploying ransomware on vulnerable systems, according to Microsoft. This surge in malicious activity follows the...
The Ηоmоgraph Illusion: Not Everything Is As It Seems
Threat Research Center Threat Research The Ηоmоgraph Illusion: Not Everything Is As It Seems By:Gal Guzman Gal Guzman Published:July 25, 2025 Categories:Business Email CompromiseMalwareThreat Resea...
New Gunra Ransomware Targets Windows Systems, Encrypts Files, and Erases Shadow Copies
New Gunra Ransomware Targets Windows Systems, Encrypts Files, and Erases Shadow Copies AhnLab’s Threat Intelligence Platform (TIP) has been instrumental in monitoring ransomware activities across d...
Hackers Use Weaponized .HTA Files to Infect Victims with Red Ransomware
Hackers Use Weaponized .HTA Files to Infect Victims with Red Ransomware CloudSEK’s TRIAD team uncovered an active development site deploying Clickfix-themed malware linked to the Epsilon Red ransom...
Multiple Hacker Groups Exploit SharePoint 0-Day Vulnerability in the Wild
Multiple Hacker Groups Exploit SharePoint 0-Day Vulnerability in the Wild Microsoft has confirmed that a pair of zero-day vulnerabilities in on-premises SharePoint Server, collectively dubbed ToolS...
Beware of Fake Error Pages Deploying Platform-Specific Malware on Linux and Windows Systems
Beware of Fake Error Pages Deploying Platform-Specific Malware on Linux and Windows Systems Wiz Research has uncovered an active cryptomining campaign, dubbed Soco404, that exploits misconfiguratio...