This month focuses on the Rise in AI Phishing Attacks, ‘Herodotus’ the Very Smart Android Trojan, and the now-patched Chrome Zero-day exploit. AI-driven Cyberattacks Continue To Be On The Rise Cybercriminals in Africa are increasingly leveraging AI to enhance phishing, impersonation, and deepfake attacks, leading to a sharp rise in AI-fueled cybercrime across the continent. […]
Intel Wrap – October 2025 Read More »
Intelligence on Malware, Threat Actors, and Campaigns in Motion Introduction Darkstream Dispatch is a monthly intelligence report dedicated to tracking and analyzing malware families, threat actors, and cyber campaigns primarily targeting Civil Society Organizations (CSOs), human rights defenders, and advocacy groups. As digital threats become more sophisticated, CSOs face increasing risks from state-sponsored actors, cybercriminals,
Darkstream Dispatch Vol.8_UNC1543 Read More »
Intelligence on Malware, Threat Actors, and Campaigns in Motion Introduction Darkstream Dispatch is a monthly intelligence report dedicated to tracking and analyzing malware families, threat actors, and cyber campaigns primarily targeting Civil Society Organizations (CSOs), human rights defenders, and advocacy groups. As digital threats become more sophisticated, CSOs face increasing risks from state-sponsored actors, cybercriminals,
Darkstream Dispatch Vol.7_UNC6200 Read More »
This month focuses on the Racoon0635 Phishing Service, Interpol’s Operation Contender, and the LightHouse and Lucid Phishing-as-a-Service Platforms. Microsoft’s Digital Crime Unit Puts a Halt On Racoon 0635 Activities Microsoft’s Digital Crimes Unit (DCU) successfully disrupted RaccoonO365, a rapidly growing cybercrime tool used to steal Microsoft 365 usernames and passwords. Summary Acting under a court
Intel Wrap – September 2025 Read More »
This month focuses on the ShadowCaptcha Campaign targeting WordPress sites, INTERPOL’s Operation Serengeti 2.0, and the PipeMagic RansomExx Malware exploiting a Microsoft Windows Vulnerability. Compromised WordPress sites exploited by ShadowCaptcha ShadowCaptcha, first detected in August 2025, has so far exploited over 100 compromised WordPress sites to deliver stealers, ransomware, and crypto miners. Summary Visitors to
Intel Wrap – August 2025 Read More »
Intelligence on Malware, Threat Actors, and Campaigns in Motion Introduction Darkstream Dispatch is a monthly intelligence report dedicated to tracking and analyzing malware families, threat actors, and cyber campaigns primarily targeting Civil Society Organizations (CSOs), human rights defenders, and advocacy groups. As digital threats become more sophisticated, CSOs face increasing risks from state-sponsored actors, cybercriminals,
Darkstream Dispatch Vol.6_UNC5518 Read More »
Intelligence on Malware, Threat Actors, and Campaigns in Motion Introduction Darkstream Dispatch is a monthly intelligence report dedicated to tracking and analyzing malware families, threat actors, and cyber campaigns primarily targeting Civil Society Organizations (CSOs), human rights defenders, and advocacy groups. As digital threats become more sophisticated, CSOs face increasing risks from state-sponsored actors, cybercriminals,
Darkstream Dispatch Vol.5_ClickFix Read More »
This month focuses on the return of Lumma Stealer, the CastleLoader campaign using fake GitHub repos to infect devices, and a security Apple patch that was exploited as a Zero-Day in Google Chrome. Lumma Stealer Returns Lumma Stealer resumed operations just weeks after the FBI disrupted their activities in May 2025, even regaining pre-takedown targeting
Intel Wrap – July 2025 Read More »
SafeOnline by CcHUB is licensed under Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International
Media Organizations 
Civil Society 
Vulnerable Groups 
Businesses 
Cyber Security Enthusiasts 
Threat Intelligence 