JavaGhost threat actors have evolved from website defacement to exploiting misconfigured AWS environments by leveraging exposed long-term access keys to establish phishing infrastructure, gain persistent access through manipulated IAM roles, and bypass security measures.
SideWinder APT has significantly expanded beyond its traditional military and government targets to focus on maritime infrastructure, logistics, telecommunications, and nuclear energy sectors across South Asia, the Middle East, Africa, and Europe.
The new Anubis ransomware group has emerged as a significant threat to Microsoft environments, specifically targeting Windows-based infrastructure, backup servers, and enterprise cloud storage.
