Tag: cyberespionage
-
Cyberspionage-Angriffe auf europäische Behörden nehmen zu
Nach aktuellen Analysen der Bitdefender Labs richtet die Hackergruppe UAC-0063 ihre Spionage-Angriffe verstärkt gegen Behörden in Europa. Besonders betroffen sind mutmaßlich auch diplomatische Vertretungen in Deutschland, Großbritannien, den Niederlanden und Rumänien. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/cyberspionage-angriffe-auf-europaeische-behoerden-nehmen-zu
-
Cyberspionage mit möglicherweise russischem Hintergrund auch gegen Behörden in Deutschland
Laut aktuellen Beobachtungen der Bitdefender Labs zielt die Gruppe UAC-0063 mit ihren Spionage-Attacken nun verstärkt auf Behörden, darunter wahrscheinlich auch Botschaften in Europa. Unter anderem in Deutschland, Großbritannien, den Niederlanden und Rumänien. Die Belege der ursprünglich auf Zentralasien gerichteten Aktivitäten nach Mittel- und Westeuropa zeigen die Kompetenz der Angreifer sowie ihre Flexibilität, mit ihrem Vorgehen…
-
New Chinese cyberespionage campaign targeted South Korean VPN service
First seen on scworld.com Jump to article: www.scworld.com/brief/new-chinese-cyberespionage-campaign-targeted-south-korean-vpn-service
-
Misinformation Is No. 1 Global Risk, Cyberespionage in Top 5
Inadequate Cyber Resilience and More Findings From WEF’s Global Risks Report 2025. Polarization within societies, escalating geopolitical tensions and the proliferation of generative AI tools have cemented misinformation and disinformation as the top global risk in a two-year outlook, according to the World Economic Forum’s Global Risks Report 2025. First seen on govinfosecurity.com Jump to…
-
PlushDaemon: Neue Hackergruppe zielt auf VPN-Nutzer
Forscher des IT-Sicherheitsunternehmens ESET haben eine bislang unbekannte Advanced Persistent Threat (APT)-Gruppe identifiziert, die mit China in Verbindung steht. Unter dem Namen PlushDaemon agiert die Gruppe offenbar seit mindestens 2019 und führt hochentwickelte Cyberspionage-Angriffe durch. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/plushdaemon-neue-hackergruppe-zielt-auf-vpn-nutzer
-
New APT28-linked cyberespionage campaign aimed at Central Asia
Tags: cyberespionageFirst seen on scworld.com Jump to article: www.scworld.com/brief/new-apt28-linked-cyberespionage-campaign-aimed-at-central-asia
-
Report: Chinese Hackers Breached CFIUS
Cyberespionage Campaign Reached Treasury Office that Reviews Foreign Investment. Chinese hackers reportedly breached a U.S. government office responsible for reviewing foreign investments for national security threats as part of a cyberespionage campaign targeting the Department of Treasury. Hackers gained access to the Committee on Foreign Investment in the U.S. First seen on govinfosecurity.com Jump to…
-
Ivanti zero-day exploited by APT group that previously targeted Connect Secure appliances
Researchers from Google’s Mandiant division believe the critical remote code execution vulnerability patched on Wednesday by software vendor Ivanti has been exploited since mid-December by a Chinese cyberespionage group. This is the same group that has exploited zero-day vulnerabilities in Ivanti Connect Secure appliances back in January 2024 and throughout the year.The latest attacks, exploiting…
-
Hackers are exploiting a new Ivanti VPN security bug to hack into company networks
Mandiant says a Chinese cyberespionage group has been exploiting the critical-rated vulnerability since at least mid-December. First seen on techcrunch.com Jump to article: techcrunch.com/2025/01/09/hackers-are-exploiting-a-new-ivanti-vpn-security-bug-to-hack-into-company-networks/
-
Gen AI is transforming the cyber threat landscape by democratizing vulnerability hunting
Tags: ai, api, apt, attack, bug-bounty, business, chatgpt, cloud, computing, conference, credentials, cve, cyber, cybercrime, cyberespionage, cybersecurity, data, defense, detection, email, exploit, finance, firewall, flaw, framework, github, government, group, guide, hacker, hacking, incident response, injection, LLM, malicious, microsoft, open-source, openai, penetration-testing, programming, rce, RedTeam, remote-code-execution, service, skills, software, sql, tactics, threat, tool, training, update, vulnerability, waf, zero-dayGenerative AI has had a significant impact on a wide variety of business processes, optimizing and accelerating workflows and in some cases reducing baselines for expertise.Add vulnerability hunting to that list, as large language models (LLMs) are proving to be valuable tools in assisting hackers, both good and bad, in discovering software vulnerabilities and writing…
-
EAGERBEE: Advanced Backdoor Targets Middle Eastern ISPs and Government Entities
Kaspersky Labs has uncovered a sophisticated cyberespionage campaign deploying the EAGERBEE backdoor to infiltrate internet service providers (ISPs) First seen on securityonline.info Jump to article: securityonline.info/eagerbee-advanced-backdoor-targets-middle-eastern-isps-and-government-entities/
-
China’s Hacking of US Telecoms: Officials Name More Victims
Reportedly Hacked: Charter Communications, Consolidated Communications, Windstream. The nine known victims of a broad and significant cyberespionage campaign the White House has tied to China reportedly include Charter Communications, Consolidated Communications and Windstream, as officials said the hackers’ earliest known telecom network penetration began in mid-2023. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/chinas-hacking-us-telecoms-officials-name-more-victims-a-27222
-
More telecom firms were breached by Chinese hackers than previously reported
Tags: access, at&t, attack, breach, china, cisco, communications, cyber, cyberespionage, cybersecurity, data, defense, disinformation, espionage, exploit, finance, fortinet, framework, government, group, hacker, Hardware, infrastructure, intelligence, international, microsoft, mobile, network, phone, regulation, risk, risk-management, router, spy, technology, threat, vulnerabilityChinese hackers linked to the Salt Typhoon cyberespionage operation have breached even more US telecommunications firms than initially reported.New victims, Charter Communications, Consolidated Communications, and Windstream, add to a growing list that already includes AT&T, Verizon, T-Mobile, and Lumen Technologies.Earlier, the US authorities informed that nine telecom firms have been affected by the Chinese espionage…
-
China-linked Salt Typhoon APT compromised more US telecoms than previously known
China-linked Salt Typhoon group that breached multiple US telecoms compromised more firms than previously known, WSJ says. The China-linked cyberespionage group Salt Typhoon targeted more US telecoms than previously known, as The Wall Street Journal reported. According to WSJ, wich cited people familiar with the matter, the Chinese cyberspies also compromised Charter Communications and Windstream.…
-
US government sanctions Chinese cybersecurity company linked to APT group
The US Department of Treasury’s Office of Foreign Assets Control (OFAC) has issued sanctions against a Beijing cybersecurity company for its role in attacks attributed to a Chinese cyberespionage group known as Flax Typhoon.The company, called Integrity Technology Group (Integrity Tech), is accused of providing the computer infrastructure that Flax Typhoon used in its operations…
-
China-linked APT Salt Typhoon breached a ninth U.S. telecommunications firm
A White House official confirmed that China-linked threat actor Salt Typhoon breached a ninth U.S. telecommunications company. A White House official confirmed confirmed that China-linked APT group Salt Typhoon has breached a ninth U.S. telecoms company as part of a cyberespionage campaign aimed at telco firms worldwide. >>A White House official said Friday the US…
-
Feds Identify Ninth Telecom Victim in Salt Typhoon Hack
Officials Say Chinese Hackers Maintained ‘Broad and Full’ Access to Telecom Systems. Federal officials told reporters Friday that ongoing investigations into the Salt Typhoon cyberespionage campaign have identified a ninth victim company affected by the attack, in which hackers maintained broad and full access to vulnerable communications infrastructure across the country. First seen on govinfosecurity.com…
-
US Congress Authorizes $3B to Replace Chinese Telecom Gear
Federal ‘Rip-and-Replace’ Program Gets Funding Boost in Defense Bill. The 2025 National Defense Authorization Act includes $3 billion to fund an FCC program aimed at replacing Chinese-made telecommunications equipment across the country amid heightened threats from Beijing following the discovery of the Salt Typhoon cyberespionage campaign. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/us-congress-authorizes-3b-to-replace-chinese-telecom-gear-a-27160
-
US Considers TP-Link Ban After Volt Typhoon Hacking Campaign
Major Chinese Router Manufacturer Facing Increased Scrutiny After Chinese Espionage. U.S. authorities have launched multiple investigations while reportedly considering banning the widely popular Chinese-manufactured TP-Link routers amid ongoing security risks linked to Chinese cyberespionage and hacking campaigns targeting American critical infrastructure sectors. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/us-considers-tp-link-ban-after-volt-typhoon-hacking-campaign-a-27139
-
Ukrainian military targeted by new Sandworm-linked cyberespionage campaign
First seen on scworld.com Jump to article: www.scworld.com/brief/ukrainian-military-targeted-by-new-sandworm-linked-cyberespionage-campaign
-
China accuses US of cyberespionage against tech firms
First seen on scworld.com Jump to article: www.scworld.com/brief/china-accuses-us-of-cyberespionage-against-tech-firms
-
Turkish defense orgs subjected to Bitter cyberespionage intrusions
First seen on scworld.com Jump to article: www.scworld.com/brief/turkish-defense-orgs-subjected-to-bitter-cyberespionage-intrusions
-
‘Bitter’ cyberspies target defense orgs with new MiyaRAT malware
A cyberespionage threat group known as ‘Bitter’ was observed targeting defense organizations in Turkey using a novel malware family named MiyaRAT. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/bitter-cyberspies-target-defense-orgs-with-new-miyarat-malware/
-
Experts discovered the first mobile malware families linked to Russia’s Gamaredon
The Russia-linked APT Gamaredon used two new Android spyware tools called BoneSpy and PlainGnome against former Soviet states. Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT group Gamaredon (a.k.a. Armageddon, Primitive Bear, and ACTINIUM). These are the first known mobile malware families linked to the Russian APT. The cyberespionage group is behind a…
-
Southeast Asia subjected to suspected Chinese cyberespionage campaign
First seen on scworld.com Jump to article: www.scworld.com/brief/southeast-asia-subjected-to-suspected-chinese-cyberespionage-campaign