Cyber Espionage

Articles related to cyber espionage campaigns and tactics.

North Korean Konni Group Leverages Google’s Find Hub to Wipe Android Devices in Latest Campaigns

Nov 11, 2025

—

by

Lara De Jong

in Threat Actors

North Korea’s Konni Group has escalated its cyber espionage tactics by leveraging Google’s legitimate Find Hub service to remotely wipe Android devices. This sophisticated campaign targets Android and Windows users with data theft and remote control objectives, initiating with spear-phishing emails and deploying the Lilith Remote Access Trojan (RAT).
Mysterious ‘SmudgedSerpent’ Hackers Target U.S. Policy Experts Amid Iran–Israel Tensions

Nov 5, 2025

—

by

Reza Rafati

in Threat Actors

A previously unidentified threat cluster, codenamed UNK_SmudgedSerpent, has been linked to a series of cyberattacks targeting academics and foreign policy experts in the U.S. during June-August 2025.
Chinese State-Linked Group Exploits Windows Zero-Day Against European Diplomats

Oct 31, 2025

—

by

Reza Rafati

in Cyber News & Updates

A China-linked threat actor, identified as UNC6384 (also known as Mustang Panda), is actively exploiting a Windows zero-day vulnerability, CVE-2025-9491, in targeted attacks against European diplomatic entities. The campaign aims to conduct cyber espionage, monitoring communications and exfiltrating sensitive data from compromised systems. This activity highlights the ongoing risk posed by unpatched vulnerabilities in critical…