Infosecurity Magazine

Advanced Persistent Threats News

Scroll down for the latest news and information covering advanced persistent threats.

Latest News and Features

Amazon Warns Russian GRU Hackers Target Western Firms via Edge Devices

News

Amazon researchers believe this campaign is part of a bigger operation spearheaded by Russia’s military intelligence service, the GRU

Top 25 Most Dangerous Software Weaknesses of 2025 Revealed

News

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

News

React2Shell Under Active Exploitation by China-Nexus Hackers

News

React2Shell (CVE-2025-55182) is under active exploitation by Earth Lamia and Jackpot Panda, risking over two million instances worldwide

Barts Health Seeks High Court Ban After Oracle EBS Breach

News

China-Linked Warp Panda Targets North American Firms in Espionage Campaign

News

Disinformation and Cyber-Threats Among Top Global Exec Concerns

News

Pall Mall Process to Define Responsible Commercial Cyber Intrusion

News

Bloody Wolf Threat Actor Expands Activity Across Central Asia

News

Scattered Lapsus$ Hunters Take Aim At Zendesk Users

News

New phishing domains point to a campaign from the notorious Scattered Lapsus$ Hunters collective

White Papers

Adapting to Tomorrow's Threat Landscape: AI's Role in Cybersecurity Operations in 2024

White Paper

Gcore Radar: DDoS Attack Trends Q3 to Q4, 2023

White Paper

NCSC Cyber Essentials Guide

White Paper

On-Demand Webinars

  • Unpacking the Top Vulnerabilities Exploited by Sophisticated Attackers
  • Strategic Shield: Leveraging Threat Intelligence for Security Resilience
  • The Infosecurity Magazine End of Year Xmas Quiz (Feat. The Beer Farmers)
  • Discover Unknown Vulnerabilities with Crowdsourced Security
  • Learn How to Reduce Business Costs with Ransomware Readiness
  • How a Threat Response Unit Unmasks a Hacker
  • Leveraging Endpoint Security to Navigate the Modern Threat Landscape
  • Updating Your Active Directory Security to the Modern Threat Environment
  • How to Prepare Your Organization’s Response to the Next Cyber Incident
  • Thwarting Insider Threats with IAM and Log Forensics

Podcasts

  • How 2025 Shaped the Future of Cybersecurity
  • ToolShell Deep Dive: The SharePoint Exploit Crisis Uncovered
  • One year since the outbreak of war in Ukraine, the team discusses the evolution of Russia-aligned cyber-attacks and the changes to cybercriminal victimology and motivations.
  • Hear from CISA’s Deputy Mission Coordinator for Threat Hunting, Jillian Rucker, and payment security expert, Neira Jones.
  • The team looks at some of the Cybersecurity Awareness Month campaigns and other efforts focusing how to thwart phishing, smishing and vishing.
  • Jan Carrol talks to us about her journey into cybersecurity, the cyber-security skills gap and how she set up her company, the Fortify Institute.
  • Beth Maundrill and James Coker analyze Insider Threats as September is National Insider Threats Awareness Month.
  • Into Security Podcast - Episode 5

More news and features

Smishing Triad Impersonation Campaigns Expand Globally

News

New FlexibleFerret Malware Chain Targets macOS With Go Backdoor

News

UNC2891 Money Mule Network Reveals Full Scope of ATM Fraud Operation

News

PlushDaemon Hackers Unleash New Malware in China-Aligned Spy Campaigns

News

China-Linked Operation “WrtHug” Hijacks Thousands of ASUS Routers

News

SecurityScorecard has revealed a new Chinese campaign targeting thousands of ASUS routers globally

New npm Malware Campaign Redirects Victims to Crypto Sites

News

A new malware campaign has been observed built on seven npm packages and using cloaking techniques and fake CAPTCHAs, operated by threat actor dino_reborn

Kraken Uses Benchmarking to Enhance Ransomware Attacks

News

US: Five Plead Guilty in North Korean IT Worker Fraud Scheme

News

Cyber-Attack Costs Carmaker JLR $258m in Q2

News

Carmaker JLR has posted $639m Q2 losses and a one-off $258m hit after a major ransomware attack

Chinese Hackers Automate Cyber-Attacks With AI-Powered Claude Code

News

Blogs

The Budget Effect of a Security Incident

Blog

Energy Operations: Managing Password Security and Continuity

Blog

Next-Gen Infosec

How to Prevent Data Leakages

Next-Gen

Top Cloud Misconceptions that Could Damage Your Organization

Next-Gen

Improve Asset Visibility in OT Security With Hybrid AI-Cloud Approaches

Next-Gen