China-linked DKnife framework uses router-level AitM implants for traffic hijacking, credential theft, and malware delivery targeting edge devices.

The researchers were hunting for samples of DarkNimbus, a backdoor linked to the MOONSHINE exploit kit which have both been known about since 2023, , when they found a fully featured ...

Chinese state-sponsored hackers are suspected of compromising Notepad++ update infrastructure in a hosting-level breach and selectively infecting users with malware.

State-backed attackers hijacked Notepad++ update traffic via a hosting provider breach, redirecting users to malicious downloads since June 2025.

Notepad++ has shared additional details on the supply chain attack carried out by Chinese state-sponsored hackers via a ...

A recent supply-chain-style intrusion has put a spotlight on a familiar truth in cybersecurity: attackers don’t always need to hack ...

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.

In the shadow of Venezuelan President Nicolás Maduro's arrest, a Chinese hacking group struck swiftly at U.S. officials, unleashing a phishing lure tied to the unfolding crisis. On January 5, 2026, ...

Advanced persistent threat (APT) groups have deployed new tools against a variety of targets, highlighting the increasing ...

Kaspersky released new findings on a sophisticated cyber espionage campaign by the Evasive Panda threat actor. The attackers have reportedly executed malware by injecting it into legitimate system ...