From quiet surveillance to loud extortion, threat actors are operating across the full spectrum of cyber aggression. An unidentified state-backed adversary is running long-running Shadow espionage campaigns spanning 155 countries, relying on stealthy malware, credential harvesting, and lateral movement. In a similar vein, the TGR-STA-1030 group has been actively pursuing targeted espionage operations using custom backdoors and carefully crafted spear-phishing lures against high-value strategic sectors. Meanwhile, the Black Basta ransomware operation is escalating its impact by abusing Bring Your Own Vulnerable Driver (BYOVD) techniques to neutralize security defenses. Continue reading for more cybersecurity updates.