Cyber espionage stories - Page 2

Proofpoint flags a sharp rise in Microsoft 365 account takeovers via device code phishing, hitting firms from finance to government.

AI-fuelled hacks and state cyber spies are tipped to dominate 2026, targeting drones, defence firms and vulnerable smaller businesses.

Chinese state-backed hackers mimic Microsoft Teams downloads in a false flag campaign to infect Chinese speakers and blame Russian actors.

CISOs are warned 2026 will bring harsher board scrutiny, AI-fuelled attacks, bigger budgets - and far less tolerance for cyber failure.

AI-native cyber attacks and synthetic IDs are forcing firms to shift from periodic checks to continuous, AI-driven security testing by 2026.

CrowdStrike's Falcon platform scores 100% detection and protection with zero false positives in MITRE ATT&CK's toughest cloud-era tests.

CrowdStrike's Falcon platform scores 100% detection and protection with no false positives in MITRE's toughest cross-domain ATT&CK tests yet.

Qilin ransomware group has targeted 25 South Korean finance firms using managed service providers, exposing 2TB of data in a politically charged cyberattack surge.

A China-linked group launched a major AI-driven cyber-espionage campaign targeting global firms, performing 80-90% of hacking with minimal human input.

Rapid7's report reveals cyber threats evolving with AI-powered phishing, rising ransomware alliances, and faster exploitation of vulnerabilities worldwide.

Curly COMrades exploit Microsoft Hyper-V to run hidden malware inside lightweight VMs, evading detection and maintaining stealthy control over targets.

Rapid7 warns AI and quantum computing will escalate cyber threats, urging firms to adopt advanced defences and post-quantum cryptography amid rising hybrid attacks.

A North Korean group has used blockchain-based EtherHiding to secretly deploy malware, targeting developers in tech and cryptocurrency sectors worldwide.

Phantom Taurus, a new Chinese state-backed group, targets governments and telecoms in Africa, the Middle East, and Asia with advanced espionage tools and tactics.

AI-driven cyber threats in Australia have doubled, with human error and outdated systems leaving critical infrastructure vulnerable to attacks in 2025.

A Chinese cyber group has targeted US government and policy organisations with spearphishing attacks amid trade talks, using advanced tactics to gain persistent access.

Chinese-linked EggStreme malware targets Philippine military firm, signalling rising espionage efforts in Asia-Pacific by advanced threat groups.

Salesloft breach exposed sensitive data of 700+ firms, including Cloudflare and Palo Alto Networks, after hackers exploited OAuth tokens via a prolonged GitHub intrusion.

Lazarus subgroup deploys three remote access trojans, including PondRAT and ThemeForestRAT, to target financial and cryptocurrency organisations with advanced cyberattacks.

State-sponsored hackers have stolen OAuth2 tokens from Salesforce integrations, compromising hundreds of organisations and exposing risks in SaaS connectivity.