SISA Weekly Threat Watch

Malicious NPM Package Uses Google Calendar as C2 Channel

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being reported across various platforms. Recent cybersecurity

Malicious NPM Package Uses Google Calendar as C2 Channel

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being reported across various platforms. Recent cybersecurity

Stealthy “Perfctl” Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Chinese Hackers Exploit GeoServer Vulnerability to Deploy EAGLEDOOR in APAC Cyberattacks

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Threat Actor Leaks 440GB of Data in Fortinet Breach

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Threat Actors Use MacroPack to Spread Havoc, Brute Ratel, and PhantomCore

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Chrome Zero-Day Exploited by North Korean Hackers to Launch Rootkit

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

New Linux Malware Exploits Udev Rules

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Lazarus Group Exploits Windows driver Zero-day Vulnerability

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Unpatched MS Office Vulnerability Leads to Potential Data Breaches

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Zero-day critical vulnerability discovered in Apache OFBiz

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Cloudflare Tunnels exploited to deliver Malware & avoid Detection

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

5 Attacks linked to Exposed Cloud credentials that are Shaking up the Cybersecurity Industry

At SISA, we understand the ever-evolving nature of cyber threats and the importance of staying one step ahead to protect

5 Attacks linked to Exposed Cloud credentials that are Shaking up the Cybersecurity Industry

At SISA, we understand the ever-evolving nature of cyber threats and the importance of staying one step ahead to protect

BianLian Ransomware: Shifting focus to data theft and extortion

The ransomware organization known as BianLian has continued to exist and add new

Xenomorph: A banking Trojan targeting financial institutions worldwide

Like other banking viruses, Xenomorph is renowned for using overlay attacks to take

IceFire Ransomware: Malicious software operates with complex encryption algorithms

The IceFire ransomware has been around since 2021 and is renowned for its

HiatusRAT: A Trojan compromising business-grade routers

HiatusRAT is a type of malware known as a Remote Access Trojan (RAT).

SYS01: Threat actors spread info stealer via Facebook lures

A version of malware called SYS01 is designed to steal sensitive information from

Stealc: A malware with infostealer capabilities targets web browsers

Stealc malware, also known as “credential stealing” malware, is a type of malicious

Beep: A customizable malware evades detection

Beep malware, also known as “Backdoor.BEeP” or “BKDR_BEEP.A,” is a type of malicious

Emotet: A steadily evolving botnet with new malspam techniques

The malware botnet known as Emotet served as a banking Trojan when it

HeadCrab: A cutting-edge malware puts global Redis servers at risk

HeadCrab is a sophisticated threat actor that infiltrates a huge number of Redis

ESXiArgs: A ransomware spree targeting virtual machines worldwide

The ransomware known as ESXiArgs targets virtual machines that are hosted by the

Malicious NPM Package Uses Google Calendar as C2 Channel

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being reported across various platforms. Recent cybersecurity

Malicious NPM Package Uses Google Calendar as C2 Channel

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being reported across various platforms. Recent cybersecurity

Stealthy “Perfctl” Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Chinese Hackers Exploit GeoServer Vulnerability to Deploy EAGLEDOOR in APAC Cyberattacks

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Threat Actor Leaks 440GB of Data in Fortinet Breach

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Threat Actors Use MacroPack to Spread Havoc, Brute Ratel, and PhantomCore

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Chrome Zero-Day Exploited by North Korean Hackers to Launch Rootkit

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

New Linux Malware Exploits Udev Rules

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Lazarus Group Exploits Windows driver Zero-day Vulnerability

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Unpatched MS Office Vulnerability Leads to Potential Data Breaches

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Zero-day critical vulnerability discovered in Apache OFBiz

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Cloudflare Tunnels exploited to deliver Malware & avoid Detection

In the past week, critical cybersecurity threats have emerged, with significant vulnerabilities being

Threat Intel Hub

Malicious NPM Package Uses Google Calendar as C2 Channel

Malicious NPM Package Uses Google Calendar as C2 Channel

5 Attacks linked to Exposed Cloud credentials that are Shaking up the Cybersecurity Industry

5 Attacks linked to Exposed Cloud credentials that are Shaking up the Cybersecurity Industry

Malicious NPM Package Uses Google Calendar as C2 Channel

Malicious NPM Package Uses Google Calendar as C2 Channel

Trending

How to Become PCI Certified? Its Importance & Implications in India 2025

Security Protocols Organizations Need To Follow In 2025

ProACT MXDR: an Agentic SOC with a Human Touch

AI security e-guide: The rising AI threat landscape & why training matters

5 Attacks linked to Exposed Cloud credentials that are Shaking up the Cybersecurity Industry

5 Cloud Exploitation Incidents Alarming the Cybersecurity World

SISA Evaluates Privacy Risks across Fintech Firm’s Applications

Wibmo Achieves Seamless Compliance with SISA ProACT MXDR

Company

Services

Resources

Quick Links

Connect with us

Events

SISA is a Forensics-Driven Cybersecurity Partner at the DSCI FINSEC Conclave 2025

Case Study

SISA Evaluates Privacy Risks across Fintech Firm’s Applications

Infosec Report

Digital Threat Report 2024 For the BFSI Sector

Weekly Threat Watch

Malicious NPM Package Uses Google Calendar as C2 Channel

Blog

How to Become PCI Certified? Its Importance & Implications in India 2025

News Room

SISA Unveils Next-Gen Agentic SOC at RSAC 2025 in San Francisco

Whitepaper

ProACT MXDR: an Agentic SOC with a Human Touch

Webinar

Future-Proofing Digital Payments: Leveraging Forensics for Quantum Safe Migration

Get access to your ROI Breakdown

Sign up for SISA's Daily
Threat Watch Advisory