United 24 Media: Russia Boosts Foreign Propaganda Budget by 54% to Record $1.85 Billion. “Russia allocated a record $1.85 billion for foreign propaganda operations in its 2026 federal budget, a 54% increase from the previous year, according to Ukraine’s Foreign Intelligence Service in a response to Liga.net on May 9.”

The Guardian: Revealed: Russia’s top secret spy school teaching hacking and election meddling. “The existence of this path, from one of Russia’s most prestigious institutions directly into its military intelligence apparatus, is revealed for the first time in more than 2,000 internal documents from Bauman, obtained by a consortium of journalists from six outlets: the Guardian, Der Spiegel, […]

State-sponsored hackers exploit Palo Alto Networks firewall zero-day

Palo Alto Networks has issued a warning about a critical zero-day vulnerability, CVE-2026-0300, that allows state-sponsored hackers to exploit its firewalls and execute arbitrary code with root privileges. The company is tracking limited exploitation attempts, linked to a cluster of likely state-sponsored threat activity.

https://osintsights.com/state-sponsored-hackers-exploit-palo-alto-networks-firewall-zero-day?utm_source=mastodon&utm_medium=social

#PaloAltoNetworks #Cve20260300 #ZeroDay #Statesponsored #RemoteCodeExecution

MuddyWater hackers exploit Chaos ransomware as cyber-espionage decoy

MuddyWater hackers have cleverly used Chaos ransomware as a decoy to mask their true intentions - and it's not about making a quick buck. Instead, their tactics suggest a more sinister goal, blurring the lines between state-sponsored espionage and cybercrime.

https://osintsights.com/muddywater-hackers-exploit-chaos-ransomware-as-cyber-espionage-decoy?utm_source=mastodon&utm_medium=social

#Muddywater #Iran #Cyberespionage #Statesponsored #Ransomware

ScarCruft Expands Malware Arsenal with Multi-Platform BirdCall Backdoor

ScarCruft hackers have launched a sneaky attack on a popular video game platform, infecting both Windows and Android users with a new backdoor called BirdCall. The multi-platform threat has been targeting ethnic Koreans in China since late 2024, allowing hackers to gain unauthorized access.

https://osintsights.com/scarcruft-expands-malware-arsenal-with-multi-platform-birdcall-backdoor?utm_source=mastodon&utm_medium=social

#Scarcruft #NorthKorea #SupplyChain #MalwareOperations #StateSponsored

Associated Press: Most serious cyberattacks against the UK now from Russia, Iran and China, cyber chief will say. “The most serious cyberattacks in the U.K. are now carried out by hostile nations including Russia, Iran and China, the head of the U.K.’s National Cyber Security Centre (NCSC) will say in a speech Wednesday.”

Lazarus Hackers Orchestrate $290 Million KelpDAO Heist

In a shocking turn of events, the Lazarus hackers struck again, making off with a staggering $290 million from the KelpDAO decentralized finance project in a single weekend heist. But who benefits from this massive theft, and who's left to deal with the devastating aftermath?

https://osintsights.com/lazarus-hackers-orchestrate-290-million-kelpdao-heist?utm_source=mastodon&utm_medium=social

#Lazarus #NorthKorea #Statesponsored #DecentralizedFinance #Defi

Reuters: China turns Taiwan’s own voices against it in information war. “Chinese state media outlets are increasingly amplifying Taiwanese critics of ‌the island’s ruling Democratic Progressive Party (DPP), including influencers and politicians linked to the opposition Kuomintang (KMT), according to five Taiwanese security officials and data from Taipei-based research group IORG that was […]

Zero-Day Exploits Target PDF Files Amid State-Sponsored Infrastructure Meddling

A critical zero-day flaw has been hiding in plain sight within everyday PDF files, and at the same time, state-sponsored actors have been aggressively probing vital infrastructure, creating a perfect storm that demands immediate attention. This dual threat of quietly persistent PDFs and long-simmering meddling has…

https://osintsights.com/zero-day-exploits-target-pdf-files-amid-state-sponsored-infrastructure-meddling?utm_source=mastodon&utm_medium=social

#ZeroDay #PdfFiles #Statesponsored #InfrastructureMeddling #EmergingThreats

The Register: Iran cyber actors disrupting US water, energy facilities, FBI warns. “Iranian-affiliated actors have escalated intrusions targeting critical US water and energy facilities, in some cases disrupting operations, the FBI and American cyber defense agencies said on Tuesday.”