Cyber espionage stories

Kaspersky reveals Lazarus Group's 'Operation SyncHole,' targeting South Korean supply chains via software vulnerabilities and watering hole attacks.

A widespread blackout in Spain and Portugal sparks debate over whether a cyber-attack caused the outage, despite initial reports of a technical fault.

ReliaQuest reveals a Chinese APT group targeted US defence tech firm in February 2025, stealing sensitive IP using advanced, stealthy cyber espionage tactics.

Verizon's 2025 DBIR reveals system intrusions caused 80% of Asia-Pacific data breaches, with ransomware hitting 51% and malware attacks soaring to 83%.

Elastic Security Labs has unveiled SHELBY, a sophisticated malware family linked to phishing attacks against an Iraqi telecom firm, raising security alarms.

Mandiant has uncovered a sophisticated cyber espionage campaign by the China-linked group UNC3886, targeting outdated Juniper Networks routers with advanced malware.

Australian organisations face escalating cyber threats as ransomware groups adopt advanced tactics previously seen only in state-sponsored attacks.

CrowdStrike's research reveals a staggering 150% rise in China-linked cyber espionage, fuelled by AI tactics, posing significant risks across various industries.

The Forum of Incident Response and Security Teams predicts a staggering 45,505 reported vulnerabilities for 2025, marking an 11% rise from 2024.

Cybercrime has overtaken state-sponsored hacking as the main online threat, with healthcare and energy sectors particularly vulnerable, warns Google.

Cohesity enhances its Security Advisory Council with the appointment of Dave DeWalt and H.R. McMaster, aimed at strengthening global data security amid rising cyber threats.

Sophos has seen its Managed Detection and Response services grow by 37%, now safeguarding over 26,000 organisations worldwide amid rising cyber threats.

Kaspersky has unveiled CookiePlus, a malware from North Korean hackers Lazarus, targeting nuclear and defence sectors amid threats of data theft.

CrowdStrike's new report reveals the activities of a Chinese-linked threat actor, LIMINAL PANDA, targeting telecommunications since 2020.

The UK faces increasing cyber threats from China-backed group Volt Typhoon, jeopardising critical infrastructure and national security, warns Certes.

The return of Volt Typhoon, a state-sponsored cyber-espionage group, threatens global infrastructures, exploiting outdated devices for covert operations.

Secureworks' latest report reveals a 30% rise in active ransomware groups, highlighting evolving cyber threats and increased complexity for network defenders.

Recent Salt Typhoon cyberattacks linked to China have infiltrated US critical infrastructure, highlighting severe vulnerabilities in the public and private sectors.

Sophos' latest report uncovers a sophisticated China-linked cyberespionage campaign targeting Southeast Asian entities.

Sophos has disclosed new insights into the Crimson Palace cyber espionage campaign by Chinese state actors, revealing persistent threats across Southeast Asia.