Tag: espionage
-
Salt Typhoon Builds Out Malware Arsenal With GhostSpider
The APT, aka Earth Estries, is one of China’s most effective threat actors, performing espionage for sometimes years on end against telcos, ISPs, and governments before being detected. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/salt-typhoon-malware-arsenal-ghostspider
-
Aggressive Chinese APT Group Targets Governments with New Backdoors
A Trend Micro analysis of Earth Estries found that the Chinese threat actor is using new backdoors to avoid detection during espionage operations First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/chinese-apt-governments-backdoors/
-
Beijing claims it’s found ‘underwater lighthouses’ that its foes use for espionage
Tags: espionageFirst seen on theregister.com Jump to article: www.theregister.com/2024/10/30/china_seabed_surveillance_device_claims/
-
South Asian hackers target Pakistani entities in new espionage campaign
First seen on therecord.media Jump to article: therecord.media/south-asian-hackers-target-pakistan-entities-in-espionage-campaign
-
Russia-linked APT TAG-110 uses targets Europe and Asia
Russia-linked threat actors TAG-110 employed custom malware HATVIBE and CHERRYSPY to target organizations in Asia and Europe. Insikt Group researchers uncovered an ongoing cyber-espionage campaign by Russia-linked threat actor TAG-110 that employed custom malware tools HATVIBE and CHERRYSPY. The campaign primarily targeted government entities, human rights groups, and educational institutions in Central Asia, East Asia,…
-
ISMG Editors: China-Linked Espionage Targets US Telecoms
Also: Highlights from ISMG’s Financial Services Summit and Key Insights on AI Adoption. On the 200th episode of the ISMG Editors’ Panel, the team discussed the major China-linked cyberespionage campaign targeting U.S. telecommunications, highlighted key insights from ISMG’s Financial Services Summit in New York and unpacked the top findings from ISMG’s annual Generative AI Survey.…
-
ISMG Editors: China-Linked Espionage Targets U.S. Telecoms
Also: Highlights from ISMG’s Financial Services Summit and Key Insights on AI Adoption. On the 200th episode of the ISMG Editors’ Panel, the team discussed the major China-linked cyberespionage campaign targeting U.S. telecommunications, highlighted key insights from ISMG’s Financial Services Summit in New York, and unpacked the top findings from ISMG’s annual Generative AI Survey.…
-
China-Linked TAG-112 Targets Tibetan Media with Cobalt Strike Espionage Campaign
A China-linked nation-state group called TAG-112 compromised Tibetan media and university websites in a new cyber espionage campaign designed to facilitate the delivery of the Cobalt Strike post-exploitation toolkit for follow-on information collection.”The attackers embedded malicious JavaScript in these sites, which spoofed a TLS certificate error to trick visitors into downloading a First seen on…
-
Russian Spies Jumped From One Network to Another Via Wi-Fi in an Unprecedented Hack
In a first, Russia’s APT28 hacking group appears to have remotely breached the Wi-Fi of an espionage target by hijacking a laptop in another building across the street. First seen on wired.com Jump to article: www.wired.com/story/russia-gru-apt28-wifi-daisy-chain-breach/
-
Russian Hackers Deploy HATVIBE and CHERRYSPY Malware Across Europe and Asia
Threat actors with ties to Russia have been linked to a cyber espionage campaign aimed at organizations in Central Asia, East Asia, and Europe.Recorded Future’s Insikt Group, which has assigned the activity cluster the name TAG-110, said it overlaps with a threat group tracked by the Computer Emergency Response Team of Ukraine (CERT-UA) as UAC-0063,…
-
Chinese APTs Shift Tactics to Evade Detection and Maintain Stealth
In light of increasing global tensions and heightened scrutiny, Chinese Advanced Persistent Threat (APT) groups are adapting their strategies to avoid detection and maintain stealth in their cyber espionage operations.... First seen on securityonline.info Jump to article: securityonline.info/chinese-apts-shift-tactics-to-evade-detection-and-maintain-stealth/
-
Sync-Scheduler Malware: Unveiling a Sophisticated Espionage Attack
In a detailed report, the BlackBerry Research and Intelligence Team has revealed a highly targeted cyber espionage campaign against the Pakistan Navy, executed by a sophisticated and likely state-sponsored threat... First seen on securityonline.info Jump to article: securityonline.info/sync-scheduler-malware-unveiling-a-sophisticated-espionage-attack/
-
Linux Malware WolfsBane and FireWood Linked to Gelsemium APT
New Linux malware WolfsBane and FireWood have been linked to Gelsemium APT, a cyber-espionage group targeting critical systems First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/linux-malware-wolfsbane-firewood/
-
Dozens of Central Asian targets hit in recent Russia-linked cyber-espionage campaign
First seen on therecord.media Jump to article: therecord.media/central-asia-cyber-espionage-tag-110-russia
-
LIMINAL PANDA A Chinese State-Sponsored Espionage Targeting Telecoms
CrowdStrike has revealed a new China-nexus state-sponsored adversary tracked as LIMINAL PANDA, which has been systematically targeting telecommunications providers since at least 2020. This revelation comes ahead of Adam Meyers,... First seen on securityonline.info Jump to article: securityonline.info/liminal-panda-a-chinese-state-sponsored-espionage-targeting-telecoms/
-
‘Water Barghest’ Sells Hijacked IoT Devices for Proxy Botnet Misuse
Tags: botnet, cyber, cybercrime, espionage, group, iot, marketplace, router, vulnerability, zero-dayAn elusive, sophisticated cybercriminal group has used known and zero-day vulnerabilities to compromise more than 20,000 SOHO routers and other IoT devices so far, and then puts them up for sale on a residential proxy marketplace for state-sponsored cyber-espionage actors and others to use. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/water-barghest-sells-hijacked-iot-devices-proxy-botnet-misuse
-
African Reliance on Foreign Suppliers Boosts Insecurity Concerns
Recent backdoor implants and cyber-espionage attacks on their supply chains have African organizations looking to diversify beyond Chinese, American tech vendors. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/african-reliance-on-foreign-suppliers-boosts-insecurity
-
China-Backed Hackers Leverage SIGTRAN, GSM Protocols to Infiltrate Telecom Networks
A new China-linked cyber espionage group has been attributed as behind a series of targeted cyber attacks targeting telecommunications entities in South Asia and Africa since at least 2020 with the goal of enabling intelligence collection.Cybersecurity company CrowdStrike is tracking the adversary under the name Liminal Panda, describing it as possessing deep knowledge about telecommunications…
-
T-Mobile Breached in Major Chinese Cyber-Attack on Telecoms
T-Mobile was hit by Salt Typhoon, a Chinese cyber-espionage group targeting US and global telecom firms First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/tmobile-breached-chinese/
-
Chinese Hackers Exploit T-Mobile and Other U.S. Telecoms in Broader Espionage Campaign
U.S. telecoms giant T-Mobile has confirmed that it was also among the companies that were targeted by Chinese threat actors to gain access to valuable information.The adversaries, tracked as Salt Typhoon, breached the company as part of a “monthslong campaign” designed to harvest cellphone communications of “high-value intelligence targets.” It’s not clear what information was…
-
18th November Threat Intelligence Report
The FBI and CISA issued a joint statement detailing a major Chinese cyber-espionage campaign targeting U.S. telecommunications infrastructure, led by the APT group Salt Typhoon. This operation compromised networks to steal call […] First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/18th-november-threat-intelligence-report/
-
T-Mobile is one of the victims of the massive Chinese breach of telecom firms
T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. Recently, the FBI and CISA announced they are continuing to investigate a large-scale cyber-espionage campaign by China-linked threat actors targeting U.S. telecoms,…
-
T-Mobile Also Targeted in Chinese Telecom Hacking Campaign
T-Mobile has also been targeted by the Chinese group Salt Typhoon in a major espionage campaign targeting US telecom companies. The post T-Mobile Also Targeted in Chinese Telecom Hacking Campaign appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/t-mobile-also-targeted-in-chinese-telecom-hacking-campaign/
-
TAG-112 Targets Tibetan Community via Waterholing Attack
In a recent report by the Insikt Group, cybersecurity analysts reveal how the China-nexus threat actor TAG-112 has launched a targeted cyber-espionage campaign against the Tibetan community by compromising prominent... First seen on securityonline.info Jump to article: securityonline.info/tag-112-targets-tibetan-community-via-waterholing-attack/
-
APT41’s LightSpy Campaign Expands with Advanced DeepData Framework in Targeted Espionage Against Southern Asia
The BlackBerry Research and Intelligence Team has uncovered a new chapter in the LightSpy espionage campaign, marking a significant evolution in APT41’s capabilities. The China-linked cyber-espionage group has introduced DeepData,... First seen on securityonline.info Jump to article: securityonline.info/apt41s-lightspy-campaign-expands-with-advanced-deepdata-framework-in-targeted-espionage-against-southern-asia/
-
Feds find ‘broad and significant’ China espionage campaign in US telecom networks
The FBI and CISA warned the nation-state affiliated malicious activities are extensive and include the theft of sensitive call records and court-ordered information. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/china-espionage-us-telecom-networks/732947/
-
China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials
China-linked threat actors breached U.S. broadband providers and gained access to private communications of a limited number of U.S. government officials. The FBI and CISA continues to investigate a large-scale cyber-espionage campaign by China-linked threat actors targeting U.S. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures.…
-
FBI Updates on ‘Broad and Significant’ Chinese Telecom Hack
US Probe of Chinese Hack Reveals ‘Broad and Significant Cyber Espionage Campaign’. The FBI and Cybersecurity and Infrastructure Security Agency released an update on their ongoing investigation into a Chinese-linked broad and significant cyber espionage campaign that the agencies said targeted private communications of government and political figures. First seen on govinfosecurity.com Jump to article:…
-
FBI confirms China-backed hackers breached US telecom giants to steal wiretap data
The FBI and CISA say they have uncovered a “broad and significant” China-linked cyber espionage campaign First seen on techcrunch.com Jump to article: techcrunch.com/2024/11/14/us-confirms-china-backed-hackers-breached-telecom-providers-to-steal-wiretap-data/