SecurityBrief Canada - Technology news for CISOs & cybersecurity decision-makers
Canada

Advanced Persistent Threat (APT) Stories

Global Stories

Advanced Persistent Threat (APT) stories

North Korea-linked hackers target developers via GitHub
Malware

North Korea-linked hackers target developers via GitHub

Nearly 100 organisations were hit in a six-week phishing spree that used GitHub repositories and Visual Studio Code tools to infect developers.

By Mark Tarre 4 min read 4 days ago
Technology firms become top cyber target in AI race
Data Protection

Technology firms become top cyber target in AI race

CrowdStrike said state-backed espionage and extortion are surging as AI assets inside tech groups draw hackers seeking code, models and access.

By Sofiah Nichole Salivio 3 min read 4 days ago
China-linked TA4922 expands attacks to Europe & Africa
Malware

China-linked TA4922 expands attacks to Europe & Africa

Businesses in Europe and Africa now face localised phishing and malware attacks from a suspected China-aligned group that has widened beyond Asia.

By Mark Tarre 4 min read Last week
ESET links China-aligned hacks to oil, Syria & tech
Robotics

ESET links China-aligned hacks to oil, Syria & tech

The report says Chinese threat groups are now tracking oil, reconstruction and strategic technologies across Venezuela, Syria, South Korea and the Gulf.

By Sofiah Nichole Salivio 4 min read Last week
Webworm targets European governments with Discord malware
Cloud Security

Webworm targets European governments with Discord malware

European ministries face a stealthier cyber-espionage campaign as Webworm shifts to Discord and Microsoft cloud tools to steal data.

By Joseph Gabriel Lagonsin 4 min read Last month
Bitdefender finds FamousSparrow energy sector campaign
Supply Chain

Bitdefender finds FamousSparrow energy sector campaign

Repeat breaches exposed an Azerbaijani oil and gas operator to espionage as FamousSparrow exploited Microsoft Exchange flaws for two months.

By Sean Mitchell 4 min read Last month
Google says AI-powered cyberattacks are already here
Malware

Google says AI-powered cyberattacks are already here

AI is now being used to write exploits and malware, with Google saying it has traced the first zero-day linked to machine assistance.

By Joseph Gabriel Lagonsin 5 min read Last month
AI now routine in cyber attacks, Google report finds
Malware

AI now routine in cyber attacks, Google report finds

Security teams face a broader threat as criminals and state-backed actors use generative AI to speed hacks, phishing and malware.

By Joseph Gabriel Lagonsin 4 min read Last month
State actors target defence suppliers in long game
Firewalls

State actors target defence suppliers in long game

Small defence contractors are left exposed as state-backed hackers spend years mapping supply chains and laying covert access routes before striking.

By Joseph Gabriel Lagonsin 5 min read Last month
China-aligned TA416 resumes spying on EU & Mideast
Phishing

China-aligned TA416 resumes spying on EU & Mideast

Diplomatic missions in Europe and the Middle East face renewed PlugX-backed espionage as TA416 shifts tactics and targets amid regional tensions.

By Sean Mitchell 4 min read Tue, 7th Apr 2026
DeepLoad malware steals credentials via ClickFix campaign
Malware

DeepLoad malware steals credentials via ClickFix campaign

Businesses face credential theft and reinfection risks as DeepLoad hides inside trusted Windows processes and evades routine clean-up.

By Joseph Gabriel Lagonsin 4 min read Wed, 1st Apr 2026
Commvault adds threat-hunting tools to backup scans
Data Protection

Commvault adds threat-hunting tools to backup scans

Existing Threat Scan customers get new free tools to spot ransomware in backups before restoration, reducing the risk of reinfecting production systems.

By Mark Tarre 3 min read Tue, 31st Mar 2026
China-linked Red Menshen hides inside telecoms networks
Unified Communications

China-linked Red Menshen hides inside telecoms networks

Dormant implants in carrier systems could expose subscriber data and signals across Europe and APAC, Rapid7 warned.

By Joseph Gabriel Lagonsin 4 min read Fri, 27th Mar 2026
NCC Group warns Iran cyber threats spread worldwide
Gaming

NCC Group warns Iran cyber threats spread worldwide

Iran-linked cyber attacks are spreading beyond the Middle East, with firms tied to Israel or the US warned they face heightened global risk.

By Joseph Gabriel Lagonsin 4 min read Tue, 24th Mar 2026
Iranian cyber shift raises risk to Western infrastructure
Disaster Recovery

Iranian cyber shift raises risk to Western infrastructure

Iranian state-aligned hackers are shifting from spying to destructive cyber strikes, putting Western critical infrastructure on high alert.

By Shannon Williams 6 min read Fri, 13th Mar 2026
Fake Red Alert app used in Android spyware smishing
Endpoint Protection

Fake Red Alert app used in Android spyware smishing

Attackers push fake Red Alert Android app via SMS, turning Israel rocket warning tool into spyware that steals messages, contacts and location.

By Sean Mitchell 4 min read Fri, 13th Mar 2026
Conflict sparks surge in Middle East cyber espionage
Phishing

Conflict sparks surge in Middle East cyber espionage

New research links Iran conflict to a swift surge in tightly targeted cyber espionage across Middle Eastern governments and embassies.

By Mark Tarre 4 min read Thu, 12th Mar 2026

Stories from Other Regions

Advanced Persistent Threat (APT) stories

OT downtime costs firms up to GBP £5 million, survey finds
Malware

OT downtime costs firms up to GBP £5 million, survey finds

Operational technology outages are leaving most manufacturers and critical infrastructure firms facing losses of up to GBP £5 million, a survey found.

By Kaleah Salmon 4 min read Thu, 2nd Apr 2026