24th February – Threat Intelligence Report

This weekly Threat Intelligence Bulletin summarizes major incidents: the $1.5B ByBit Ethereum wallet theft attributed to North Korea’s Lazarus Group; multiple corporate and government breaches (Genea, Vorwerk/Rezpetwelt.de, Insight Partners, Ecuador’s National Assembly, CarMoney); actively exploited vulnerabilities including Microsoft Power Pages (CVE-2025-24989) and Craft CMS (CVE-2025-23209); and ongoing campaigns deploying ShadowPad and NailaoLocker, alongside research into sandbox evasion and URL manipulation techniques used in phishing.