Comprehensive Threat Exposure Management Platform
Critical Threat Research : Middle-East at WAR: The Rapidly Escalating Iranian Cyber Threat Download the Report Critical Threat Research : Middle-East at WAR: The Rapidly Escalating Iranian Cyber Threat Download the Report
For a detailed threat digest, download the PDF file here
HiveForce Labs has reported a sharp rise in cybersecurity threats, highlighting the increasing complexity and frequency of global cyber incidents. Over the past week, eight major attacks were detected, one critical vulnerability was publicly disclosed, and three active threat actor groups were monitored, signaling a concerning escalation in malicious activity.
Silent Lynx is an advanced persistent threat (APT) group conducting sustained espionage operations across Central Asia. Their campaign, “Peek-A-Baku,” employs custom implants such as Silent Loader and LAPLAS, underscoring a long-term effort to collect intelligence on regional geopolitical and economic developments.
A critical vulnerability (CVE-2025-11833) in the widely used Post SMTP WordPress plugin, affecting over 400,000 websites, enables unauthenticated attackers to gain full administrative control by exploiting a missing capability check. The flaw is already being weaponized, with more than 4,500 attacks reportedly blocked to date.
Meanwhile, Gootloader resurfaced in October 2025, launching a wave of rapid intrusions that compromised domain controllers within hours of infection. This renewed campaign appears to involve coordinated activity between Storm-0494 and the Rhysida ransomware group, reflecting an increasingly organized and sophisticated threat ecosystem. This highlights the increasing importance of proactive security updates and robust monitoring in defending against sophisticated, rapidly evolving attacks.
Subscribe to receive our weekly threat digests and alerts directly in your inbox.
