19h ago · 14 min read · 1. Campaign Summary On May 5, 2026, Cisco Talos published a comprehensive analysis of UAT-8302 — a China-nexus advanced persistent threat group targeting government entities in South America (from at
Join discussion
May 6 · 12 min read · Executive Summary In January 2025, ESET Research uncovered a previously undocumented China-aligned APT group named GopherWhisper, actively targeting Mongolian government institutions. The group's defi
Join discussion
Apr 28 · 7 min read · Originally published on satyamrastogi.com Xu Zewei's extradition marks rare accountability for state-sponsored operators. Analysis of Silk Typhoon's targeting methodology, C2 infrastructure, credential harvesting tactics, and implications for blue t...
Join discussion
Apr 26 · 6 min read · 📋 Top Headlines at a Glance Week in review: Claude Mythos finds 271 Firefox flaws, Vercel breach U.S. CISA adds SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities catalog Microsoft rolls out revamped Windows Insider Progra...
Join discussion
Apr 24 · 7 min read · Originally published on satyamrastogi.com Tropic Trooper pivots from traditional enterprise targets to home routers and ISP infrastructure serving Japanese organizations. Analysis of expanded TTPs, targeting methodology, and defensive implications f...
Join discussion
Mar 30 · 5 min read · 📋 Top Headlines at a Glance FBI Confirms Kash Patel Email Hack as US Offers $10M Reward for Hackers Russia-linked APT TA446 uses DarkSword exploit to target iPhone users in phishing wave SystemRescue 13 updates its kernel to Linux 6.18 LTS, adds ne...
Join discussion
Mar 27 · 5 min read · 📋 Top Headlines at a Glance Dutch Police discloses security breach after phishing attack China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks AI frenzy feeds credential chaos, secrets leak through code, tools, and infr...
Join discussion
Mar 25 · 5 min read · Amazon Threat Intelligence has noted a concerning trend: commercial AI services are lowering technical barriers, enabling even amateur attackers to launch global-scale campaigns. A recent investigatio
Join discussion
Mar 9 · 5 min read · I. Overview At the beginning of 2026, a critical zero-day vulnerability identified as CVE-2026-20127 was announced, affecting the Cisco Catalyst SD-WAN Controller platform. With a maximum CVSS score o
Join discussion
Feb 26 · 2 min read · Dohdoor Backdoor 2026: Exploiting DNS-over-HTTPS for Stealthy C2 In the ever-evolving cybersecurity landscape, the introduction of AI and advanced tools has created both challenges and opportunities. This week, Cisco Talos identified an ongoing campa...
Join discussion
