Advanced Persistent Threat (APT) stories

NCC Group links Silver Fox’s false-flag malware campaigns to ValleyRAT and uncovers critical PowerG flaws that can fully compromise alarms.

Alleged US cyber role in Venezuela attack exposes how multi-domain operations can silently compromise critical national infrastructure.

Storm-0249 hijacks trusted security and Windows tools to stealthily broker high-value network access for ransomware operators.

Chinese state-backed hackers mimic Microsoft Teams downloads in a false flag campaign to infect Chinese speakers and blame Russian actors.

CrowdStrike’s Falcon platform scores 100% detection and protection with zero false positives in MITRE ATT&CK’s toughest cloud-era tests.

China-linked WARP PANDA cyberespionage group targets US cloud networks, exploiting vulnerabilities in Microsoft 365, VMware, and more for sustained data access.

ThreatBook launches its Advanced Threat Intelligence solution to enhance cyber risk detection in Asia Pacific, analysing billions of attack records daily.

Phantom Taurus, a new Chinese state-backed group, targets governments and telecoms in Africa, the Middle East, and Asia with advanced espionage tools and tactics.

Broadcom patches a VMware zero-day flaw exploited for nearly a year, allowing attackers root access to virtual machines in certain configurations.

WatchGuard launches FireCloud Total Access, a hybrid SASE service offering Zero Trust security for MSPs and IT teams to protect remote and hybrid workforces.

A Chinese cyber group has targeted US government and policy organisations with spearphishing attacks amid trade talks, using advanced tactics to gain persistent access.

Chinese-linked EggStreme malware targets Philippine military firm, signalling rising espionage efforts in Asia-Pacific by advanced threat groups.

Singapore CISOs face rising cyber risks with 91% reporting data loss, growing insider threats, and concerns over AI amid escalating pressure and preparedness gaps.

Proofpoint warns of a potential vulnerability where FIDO authentication can be bypassed via downgrade attacks, exposing users to phishing risks despite advanced security.

Half of Australian government agencies have not adopted the strongest email security, risking cyberattacks on sensitive public sector data and communications.

CyrusOne plans a GBP £1.2 billion sustainable data centre in Buckinghamshire, creating 540 jobs and advancing the UK’s digital infrastructure.

Microsoft’s June 2025 patch fixes 67 flaws, including the first WebDAV zero-day in seven years and critical remote code execution issues across Windows and Office.

Ransomware attacks on industrial firms surged to 708 in Q1 2025, led by manufacturing, with North America and Europe hardest hit, warns Dragos report.

BlackFog updates its AI-powered platform to detect dormant cyber attackers by baseline activity, bolstering defences against advanced persistent and insider threats.

ReliaQuest reveals a Chinese APT group targeted US defence tech firm in February 2025, stealing sensitive IP using advanced, stealthy cyber espionage tactics.