Current Cyber Threats












































45 Previously Unreported Domains Expose Longstanding Salt Typhoon Cyber Espionage

Threat hunters have uncovered 45 domains linked to Chinese cyber espionage activity, with registrations stretching back more than five years. The infrastructure, tied to Salt Typhoon and UNC4841, demonstrates that Chinese state-backed operators have been quietly maintaining resources well before the high-profile 2024 campaigns targeting U.S. telecommunications providers.




GPUGate Malware: Malicious GitHub Desktop Implants Use Hardware-Specific Decryption, Abuse Google Ad

On August 19, 2025, the Arctic Wolf Cybersecurity Operations Center discovered a new and unique cyberattack campaign that uses paid advertisements and a malicious GitHub repository to deceive users. The attackers leveraged paid Google Ads to funnel users to a counterfeit GitHub domain, making the malicious download appear to be from a legitimate source.