First, a phishing scheme where attackers used legitimate PayPal email addresses to gain control of users' accounts. This scheme involved creating an email distribution list with an attacker-controlled address and using PayPal to send a payment request to that address, ultimately linking the victim’s account to the attacker’s email. Next, over 4,000 abandoned web backdoors were hijacked by registering expired domains. These backdoors, found on servers of high-profile targets, were sinkholed to prevent malicious actors from gaining control. Finally, a cyberattack launched by Ukrainian hacktivists against a Russian internet service provider, Nodex. The attack resulted in the destruction of Nodex's network and the theft of sensitive documents. While Nodex is working to restore its systems from backups, internet connectivity has been significantly disrupted.