CyDhaal - Your Daily Dose of Cyber Intelligence - Daily Cyber Threats. Zero Noise

IronWorm Malware Infects 36 Packages In npm Attack

A sophisticated supply chain attack has compromised 36 npm packages with IronWorm malware, targeting developers’ systems to exfiltrate sensitive data and establish persistent backdoors. The malicious packages received thousands of downloads before detection, affecting developers worldwide who integr

Hackers Share Playbook Targeting Vulnerability Gaps

CyDhaal Admin8 hours ago08 mins

Cybercriminals are systematically exploiting the operational gaps in enterprise vulnerability management programs rather than solely targeting unpatched systems. Recent threat intelligence reveals attackers focus on scanning windows, patch deployment delays, asset inventory blind spots, and prioriti

Kali365 PhaaS Expands To Target Okta And MAX Messenger

CyDhaal Admin8 hours ago08 mins

The Kali365 Phishing-as-a-Service (PhaaS) platform has significantly expanded its targeting capabilities beyond Microsoft 365 to include Okta identity services and MAX Messenger communication platform. This evolution represents a dangerous shift in the PhaaS ecosystem, enabling even low-skilled thre

Lazarus Group Targets Developers With npm Brandjacking

CyDhaal Admin8 hours ago08 mins

The North Korean state-sponsored Lazarus Group has launched a sophisticated npm brandjacking campaign targeting software developers. By creating typosquatted packages that mimic legitimate libraries, the threat actors are distributing malware designed to steal credentials, cryptocurrency wallets, an

Critical Cisco Unified CM Bug Patched With Live Exploits

CyDhaal Admin8 hours ago07 mins

Cisco has released emergency patches for a critical authentication bypass vulnerability (CVE-2024-20272) in Unified Communications Manager (Unified CM) with a CVSS score of 9.8. Public exploit code is now circulating, enabling unauthenticated attackers to execute arbitrary commands with root privile

Five Eyes Warns: China Targeting LinkedIn Users Again

CyDhaal Admin8 hours ago08 mins

The Five Eyes intelligence alliance has issued a fresh warning about renewed Chinese espionage operations targeting government officials, defense contractors, and critical infrastructure workers through LinkedIn. Threat actors are creating sophisticated fake profiles to establish trusted relationshi

China-Linked TA4922 Expands Phishing Across Europe

CyDhaal Admin8 hours ago08 mins

Chinese state-sponsored threat actor TA4922 has broadened its phishing campaign beyond traditional targets, now hitting organizations in the United Kingdom, Germany, Italy, and South Africa. The group deploys sophisticated credential harvesting infrastructure using compromised legitimate domains and

Fake ID Marketplace Dismantled By European Police

CyDhaal Admin8 hours ago08 mins

European law enforcement agencies successfully dismantled a sophisticated online marketplace specializing in fraudulent identity documents used predominantly by migrant smuggling operations. The operation, coordinated across multiple jurisdictions, resulted in arrests, server seizures, and the disru

Chinese Spies Use Fake Job Ads To Target Military Staff

CyDhaal Admin12 hours ago08 mins

The Five Eyes intelligence alliance has issued a joint advisory warning that Chinese state-sponsored threat actors are conducting sophisticated social engineering campaigns using fake job advertisements to target military personnel and defense contractors. These operations aim to extract classified

Gamaredon Exploits WinRAR Flaw In Ukrainian Spy Attack

CyDhaal Admin12 hours ago08 mins

Russian-linked APT group Gamaredon has weaponized a known WinRAR vulnerability (CVE-2023-38831) to deploy sophisticated modular spyware against Ukrainian targets. The campaign leverages malicious archive files disguised as legitimate documents to achieve initial access, followed by multi-stage paylo

CyDhaal – Your Daily Dose of Cyber Intelligence

CyDhaal – Your Daily Dose of Cyber Intelligence

IronWorm Malware Infects 36 Packages In npm Attack

Hackers Share Playbook Targeting Vulnerability Gaps

Kali365 PhaaS Expands To Target Okta And MAX Messenger

Lazarus Group Targets Developers With npm Brandjacking

Critical Cisco Unified CM Bug Patched With Live Exploits

Five Eyes Warns: China Targeting LinkedIn Users Again

China-Linked TA4922 Expands Phishing Across Europe

Fake ID Marketplace Dismantled By European Police

Chinese Spies Use Fake Job Ads To Target Military Staff

Gamaredon Exploits WinRAR Flaw In Ukrainian Spy Attack

IronWorm Malware Infects 36 Packages In npm Attack

Hackers Share Playbook Targeting Vulnerability Gaps

Kali365 PhaaS Expands To Target Okta And MAX Messenger

Lazarus Group Targets Developers With npm Brandjacking

IronWorm Malware Infects 36 Packages In npm Attack

Hackers Share Playbook Targeting Vulnerability Gaps

Kali365 PhaaS Expands To Target Okta And MAX Messenger

Lazarus Group Targets Developers With npm Brandjacking

IronWorm Malware Infects 36 Packages In npm Attack

Hackers Share Playbook Targeting Vulnerability Gaps

Kali365 PhaaS Expands To Target Okta And MAX Messenger

Lazarus Group Targets Developers With npm Brandjacking

Critical Cisco Unified CM Bug Patched With Live Exploits

Five Eyes Warns: China Targeting LinkedIn Users Again

China-Linked TA4922 Expands Phishing Across Europe

Fake ID Marketplace Dismantled By European Police

Chinese Spies Use Fake Job Ads To Target Military Staff

Gamaredon Exploits WinRAR Flaw In Ukrainian Spy Attack

You May Have _Missed

Google Launches Deepfake Call Detection For Android

Why Cryptography Can’t Secure Modern Networks Anymore

PAN-OS GlobalProtect Flaw Under Active Exploitation

Google Leaks Details Of Unfixed Chromium Flaw

Supply Chain Worm Alert: “Mini Shai-Hulud” Hits Node Ecosystem, Steals CI/CD Secrets at Scale

Gunra Ransomware Expands RaaS After Conti Shift

AI-Driven Exploits Collapse Security Response Windows

Google Patches 124 Android Flaws, One Actively Exploited

You May Have Missed

You May Have _Missed