New attacks in Italy, novel APT operations, reported data breaches

CROSS: Code-Based Digital Signature

 View all
New attacks in Italy, novel APT operations, reported data breaches

Italy: multiple malicious activities observed A phishing campaign has been detected in Italy leveraging the name of the Agenzia delle Entrate–Riscossione with the aim of stealing login credentials belonging to...

 Read more
Latest from Italy, updates in the state-sponsored landscape, ransomware and leaks

Italy: several malicious activities observed In the past week, several offensives have targeted Italian entities. Specifically, Microsoft reported an advanced phishing campaign exploiting the legitimate “device code flow” authentication mechanism...

 Read more
Attacks in Italy, several breaches announced, new state-sponsored operations

Italy: spyware, breaches, ransomware and DDoS WhatsApp notified approximately 200 users, primarily in Italy, that they had been targeted through a counterfeit version of its iPhone application containing spyware. Those...

 Read more
Latest from Italy, updates in the APT landscape, multiple vulnerabilities exploited ITW

Italy: multiple malicious activities observed Over the past week, several offensive operations targeted Italian entities. Specifically, a new distribution campaign involving a malware strain named UpCrypter was tracked, inducing targets...

 Read more
Updates on React2Shell exploitation, the latest from Beijing and Tehran, new attacks in Italy

React2Shell: EtherRAT and other malware delivered in state-sponsored and cybercrime activity During a recent attack based on the exploitation of the critical vulnerability CVE-2025-55182 (known as React2Shell), security researchers identified...

 Read more
Phishing and ransomware in Italy, global data breaches, new state-sponsored operations

Italy: offensive cybercrime hits the country  A new phishing campaign targeting Italian users has been identified, leveraging the name and visual identity of the Italian Government and the Presidency of...

 Read more
New breaches and ransomware attacks, multiple vulnerabilities fixed, and the latest from the state-sponsored landscape 

Cybercrime: attacks on Almaviva, Eurofiber France, Pajemploi and Poltronesofà A few days after the publication on an underground forum of a leak of approximately 2.3 TB containing data linked to...

 Read more
Italy targeted by multiple adversaries, new APT operations, latest developments in cybercrime

Italy: DDoS, phishing, and ransomware attacks detected, along with BadCandy distribution During the first weekend of the month, NoName057(16) continued to claim DDoS attacks against the following Italian targets: the...

 Read more
APT operational developments, malware families and variants, new cybercrime ecosystems, and methods of compromise

APT: new toolkits and TTPs from state-sponsored adversaries In the state-sponsored landscape, this week saw new tactics and tools from various APTs. The Indian Bitter sent phishing emails targeting diplomatic...

 Read more