ZCyberNews
中文

#threat-intelligence

9 articles

Over the past month, ZCyberNews has published 29 articles under the threat-intelligence tag, covering activity from Commercial Surveillance Vendors, GopherWhisper, and Handala Hack. These reports, dated from April 13 to May 14, 2026, document impacts across government, technology, financial services, civil society, and critical-infrastructure sectors globally, with specific incidents noted in Asia, Europe, Iran, and North America. The coverage includes 12 informational, 10 high, and 3 medium severity items, reflecting a concentrated period of observed operations by these distinct actors.

Google TAG Report Details Commercial Surveillance Vendor IndustryHIGH
Threat Intel

Google TAG Report Details Commercial Surveillance Vendor Industry

Google TAG's 2026 report maps 50+ commercial surveillance vendors selling spyware to governments — targeting journalists, activists, and lawyers.

3 min readCommercial Surveillance Vendors
Google: AI Prompt Injection Attacks Rising, Still Low-SophisticationMEDIUM
Threat Intel

Google: AI Prompt Injection Attacks Rising, Still Low-Sophistication

Google reports a rise in malicious AI prompt injection attacks, but most remain low-sophistication and harmless. Indirect injection attempts target LLM-integrated apps.

2 min read
Iranian Handala Hack Breaches FBI Director Patel's GmailHIGH
Threat Intel

Iranian Handala Hack Breaches FBI Director Patel's Gmail

Iranian state-affiliated group Handala Hack breached FBI Director Patel's personal Gmail account, leaking personal photos and documents after the FBI seized the group's domains.

2 min readHandala Hack
Elastic Security Backs UK MoD Defence Cyber Marvel 2026 ExerciseINFORMATIONAL
Industry News

Elastic Security Backs UK MoD Defence Cyber Marvel 2026 Exercise

Elastic Security Labs deployed AI-driven detection pipelines for the UK Ministry of Defence's Defence Cyber Marvel 2026 exercise, processing 1.2TB of telemetry across 50 simulated…

2 min read
GopherWhisper APT Uses Go Tools, Legit Services in Gov AttacksHIGH
Threat Intel

GopherWhisper APT Uses Go Tools, Legit Services in Gov Attacks

GopherWhisper, a new state-backed APT, targets government entities with a Go-based toolkit abusing Outlook, Slack, and Discord for C2.

2 min readGopherWhisper
Caller-as-a-Service Fraud Operations Mimic Corporate Call CentersMEDIUM
Threat Intel

Caller-as-a-Service Fraud Operations Mimic Corporate Call Centers

Flare researchers detail 'Caller-as-a-Service' fraud, where criminal operations use hiring, training, and KPIs to manage scam callers targeting victims in North America and Europe.

2 min read
Ransomware Attackers Operate Like Businesses, ESET Research RevealsHIGH
Threat Intel

Ransomware Attackers Operate Like Businesses, ESET Research Reveals

ESET analysis of 100+ ransomware attacks shows threat actors run business operations with defined roles, KPIs, and supply chains, not just technical attacks.

3 min readLockBit
AI-Powered Vulnerability Discovery Accelerates Exploit Timelines, StrainsHIGH
AI Security

AI-Powered Vulnerability Discovery Accelerates Exploit Timelines, Strains

Qualys warns that AI agents like Claude Mythos can cut vulnerability discovery time from months to hours, compressing the patch window and overwhelming security teams with a surge of new CVEs.

3 min read
Anthropic Restricts Access to AI Model Capable of Automated VulnerabilityHIGH
AI Security

Anthropic Restricts Access to AI Model Capable of Automated Vulnerability

Anthropic has restricted its Claude Mythos Preview AI to ~50 critical infrastructure vendors, citing its advanced ability to autonomously find and exploit software vulnerabilities, raising concerns about dual-use risks and offensive cyber capabilities.

4 min read

Stay Updated

Get the latest cybersecurity news delivered to your inbox.