Threat Hunter TeamSymantecPosted: 21 Apr, 20255 Min ReadThreat IntelligenceBillbug: Intrusion Campaign Against Southeast Asia ContinuesChina-linked group introduces new custom tools in recent attacks.Billbug: Intrusion Campaign Against Southeast Asia Continues
Threat Hunter TeamSymantecPosted: 7 May, 20257 Min ReadRansomware Attackers Leveraged Privilege Escalation Zero-dayExploit used by Play-linked attackers targets the CVE-2025-29824 zero-day vulnerability patched on April 8.Ransomware Attackers Leveraged Privilege Escalation Zero-day
Threat Hunter TeamSymantecPosted: 21 Apr, 20255 Min ReadBillbug: Intrusion Campaign Against Southeast Asia ContinuesChina-linked group introduces new custom tools in recent attacks.Billbug: Intrusion Campaign Against Southeast Asia Continues
Threat Hunter TeamSymantecPosted: 10 Apr, 202511 Min ReadShuckworm Targets Foreign Military Mission Based in UkraineGroup uses updated PowerShell version of its GammaSteel malware in attack.Shuckworm Targets Foreign Military Mission Based in Ukraine
Threat Hunter TeamSymantecPosted: 20 Mar, 20253 Min ReadRansomHub: Attackers Leverage New Custom BackdoorBetruger backdoor being used by at least one affiliate of RansomHub.RansomHub: Attackers Leverage New Custom Backdoor
Threat Hunter TeamSymantecPosted: 13 Mar, 20253 Min ReadAI: Advent of Agents Opens New Possibilities for AttackersAgents are already capable of creating and sending phishing emails to targets.AI: Advent of Agents Opens New Possibilities for Attackers