
Alexander Culafi
Senior News Writer, Security at Tech Target
Podcast Co-Host at Talk Nintendo Podcast
Cybersecurity reporter @DarkReading. One-time novelist (so far). Podcasts: @UnpreparedMen/@TalkNintendoPod. Mostly tweets about video games. DM for Signal.
Articles
-
1 week ago |
darkreading.com | Alexander Culafi
A state-backed threat actor used Google Calendar for post-exploitation command-and-control (C2) operations in a threat campaign against government targets last October. Google senior security engineer Patrick Whitsell published research on May 28 regarding APT41, a Chinese state-sponsored espionage group also known as "Double Dragon." The group's activities are far-reaching; it previously hacked TeamViewer in 2016 and breached a number of critical infrastructure entities last year.
-
1 week ago |
darkreading.com | Alexander Culafi
A phishing group named "Haozi" is selling turnkey phishing infrastructure to amateur attackers — no commands needed. Security vendor Netcraft today published research concerning the Chinese-language phishing-as-a-service (PhaaS) group, which sells plug-and-play software that enables would-be hackers to steal credentials with little to no technical expertise.
-
1 week ago |
community.opentextcybersecurity.com | Alexander Culafi
DragonForce, a ransomware "cartel" that has gained significant popularity since its debut in 2023, attacked an MSP as part of a recent supply chain attack, via known SimpleHelp bugs. May 27, 2025 By Alexander CulafiThe DragonForce ransomware gang attacked a managed service provider's (MSP) remote monitoring and management (RMM) tool in order to conduct a supply chain attack.
-
1 week ago |
darkreading.com | Alexander Culafi
The DragonForce ransomware gang attacked a managed service provider's (MSP) remote monitoring and management (RMM) tool in order to conduct a supply chain attack. This news comes from Sophos, which today published research concerning an unnamed MSP and an attack conducted by DragonForce, a gang that emerged in 2023 and has become known for its unique ransomware-as-a-service (RaaS) scheme.
-
2 weeks ago |
threatbeat.com | Alexander Culafi
Skip to content NEW Security news and analysis brought to you by the McCrary Institute | READ MORE → By Alexander Culafi • May 23, 2025 Attacks on major organizations such as Unimicron, the South African Weather Service (SAWS), National Presto Industries, and Lee Enterprises signaled a surge in ransomware across critical infrastructure sectors in the first quarter of 2025 — a trend that was exacerbated by a growth in the variety and sophistication of the tactics used. That’s according to...
Try JournoFinder For Free
Search and contact over 1M+ journalist profiles, browse 100M+ articles, and unlock powerful PR tools.
Start Your 7-Day Free Trial →X (formerly Twitter)
- Followers
- 843
- Tweets
- 13K
- DMs Open
- Yes

RT @RockstarGames: Grand Theft Auto VI is now set to release on May 26, 2026. https://t.co/YgaIn1cYc8 https://t.co/cyeK7GM6Ob

RT @TalkNintendoPod: The whole gang's here and Perry is giving us his Switch 2 Direct thoughts! https://t.co/AlfPjHNlcq https://t.co/dskgx…

RT @C_C_Krebs: 👇