EchoCreep, which uses Discord for C&C communication, and GraphWorm, which uses Microsoft Graph API for the same purpose. The ...
ESET Research uncovered and analyzed the latest activities and arsenal of China-aligned Webworm advanced persistent threat ...
Eset says China-aligned Webworm added Discord- and Microsoft Graph-based backdoors, custom proxies and cloud-staged malware ...
The advanced persistent threat group also relied on SOCKS proxies like SoftEther VPN, tunneling tools that act as a middleman between victim and attacker.
Microsoft says Storm-2949 targets Microsoft 365 and Azure environments using MFA abuse, password resets, and cloud data theft ...
A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate ...
Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...
Microsoft says Storm-2949 used one hacked identity to infiltrate cloud systems, steal sensitive data, and spread across Azure ...
China-linked Webworm APT expands beyond Asia, targeting European government organizations and refining its cyber espionage ...
Google followed its Cloud Next '26 Gemini Enterprise Agent Platform rollout and its Antigravity CLI transition with a broader I/O 2026 agent-development stack spanning Agent Studio, Managed Agents API ...
This week, more incidents that we can here list. Among them: cloned Shai-Hulud malware, a new maximum CVSS Cisco flaw. Edge ...
Data is being stolen by a threat actor who is targeting Microsoft 365 and Azure production installations using assaults that ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results