3+ hour, 52+ min ago  (458+ words) Muddy Water has been in the APT business for some time now. And this time, it set its sights on organizations and individuals primarily across the MENA region, leveraging ongoing geopolitical tensions. Dubbed "Operation Olalampo," the threat actors deployed new…...

5+ hour, 6+ min ago  (449+ words) A postmortem from Steakhouse has shed new light on a 30 March security incident. Attackers briefly hijacked its domain to serve a phishing site, exposing a critical weakness in off-chain infrastructure rather than on-chain systems. The team confirmed that the attack…...

10+ hour, 43+ min ago  (171+ words) Huff Post Do Not Sell or Share My Personal Information These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which…...

1+ day, 11+ hour ago  (248+ words) SC Media UK Hijacked NHS Scotland domains push adult content The Registerreports that a cybersecurity incident involving hijacked legacy domains belonging to Scottish medical practices has raised uncomfortable questions about credential security and abandoned web properties within the United Kingdom's…...

2+ day, 3+ hour ago  (494+ words) Lumen observed a rapid adaptation of Forest Blizzard's tradecraft, with widespread router exploitation and DNS redirection commencing just one day later, on August 6, 2025. This timing indicates a swift adjustment by the threat actor to public disclosures. By December 2025, the campaign…...

1+ day, 14+ hour ago  (258+ words) We assess that APT28 is almost certainly the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Centre (GTs SS) Military Intelligence Unit 26165," the agency said in its Tuesday advisory. APT28 (also known as Forest Blizzard, Fancy Bear, STRONTIUM, the Sednit…...

2+ day, 17+ hour ago  (531+ words) Russian military-linked hackers are actively compromising poorly secured home and small-office routers to hijack internet traffic and spy on organizations worldwide. Microsoft Threat Intelligence recently exposed this massive global campaign by a group known as Forest Blizzard, which has already…...

3+ day, 4+ hour ago  (215+ words) Forest Blizzard, a threat group associated with the Russian military, has been exploiting poorly secured home and small-office internet devices'such as routers'by taking control of them and altering their configurations. This allows the attackers to incorporate these devices into their…...

2+ day, 14+ hour ago  (805+ words) Russian cyber actor APT28 exploit vulnerable routers to hijack DNS, enabling adversary'in'the'middle attacks and theft of passwords and authentication tokens. The DNS hijacking operations are believed to be opportunistic in nature, with the actor targeting a wide pool of victims and…...

3+ day, 1+ hour ago  (312+ words) A recent advisory from the National Cyber Security Centre (NCSC) details how the Russian state-sponsored cyber actor, APT28, is exploiting vulnerable routers. These sophisticated operations aim to hijack Domain Name System (DNS) configurations, enabling advanced adversary-in-the-middle (Ait M) attacks. This exploitation allows…...