Qilin affiliates spear-phish MSP ScreenConnect admin, targeting customers downstream

Bys s

Attack matches three-year long pattern of ScreenConnect attacks tracked by Sophos MDR as STAC4365.

Similar Posts

Coinbase Agents Bribed, Data of ~1% Users Leaked; $20M Extortion Attempt Fails

Bys s

Cryptocurrency exchange Coinbase has disclosed that unknown cyber actors broke into its systems and stole account data for a small subset of its customers. “Criminals targeted our customer support agents overseas,” the company said in a statement. “They used cash offers to convince a small group of insiders to copy data in our customer support…

SilentCryptoMiner Infects 2,000 Russian Users via Fake VPN and DPI Bypass Tools

Bys s

A new mass malware campaign is infecting users with a cryptocurrency miner named SilentCryptoMiner by masquerading it as a tool designed to circumvent internet blocks and restrictions around online services. Russian cybersecurity company Kaspersky said the activity is part of a larger trend where cybercriminals are increasingly leveraging Windows Packet Divert (WPD) tools to distribute…

U.S. Charges 12 Chinese Nationals in State-Backed Hacking Operations

Bys s

The U.S. Department of Justice (DoJ) has announced charges against 12 Chinese nationals for their alleged participation in a wide-ranging scheme designed to steal data and suppress free speech and dissent globally. The individuals include two officers of the People’s Republic of China’s (PRC) Ministry of Public Security (MPS), eight employees of an ostensibly private…

Lotus Panda Hacks SE Asian Governments With Browser Stealers and Sideloaded Malware

Bys s

The China-linked cyber espionage group tracked as Lotus Panda has been attributed to a campaign that compromised multiple organizations in an unnamed Southeast Asian country between August 2024 and February 2025. “Targets included a government ministry, an air traffic control organization, a telecoms operator, and a construction company,” the Symantec Threat Hunter Team said in…

⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [10 February]

Bys s

In cybersecurity, the smallest crack can lead to the biggest breaches. A leaked encryption key, an unpatched software bug, or an abandoned cloud storage bucket—each one seems minor until it becomes the entry point for an attack. This week, we’ve seen cybercriminals turn overlooked weaknesses into major security threats, proving once again that no system…