Tag: espionage
-
UNC2970 Hackers Attacking Job Seekers Using Weaponized PDF Reader
UNC2970, a North Korean cyber espionage group, used customized SumatraPDF trojans to deliver MISTPEN backdoors to victims through phishing emails pret… First seen on gbhackers.com Jump to article: gbhackers.com/unc2970-hackers-job-pdf-attack/
-
Cyber Threats Intensify in Mexico: Insights from Mandiant on Espionage and Extortion
A new report from Mandiant revealed the increasing cyber threats faced by Mexico, with a complex mix of global espionage and local cybercrime targetin… First seen on securityonline.info Jump to article: securityonline.info/cyber-threats-intensify-in-mexico-insights-from-mandiant-on-espionage-and-extortion/
-
TIDRONE Espionage Group Targets Taiwan Drone Makers in Cyber Campaign
A previously undocumented threat actor with likely ties to Chinese-speaking groups has predominantly singled out drone manufacturers in Taiwan as part… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/tidrone-espionage-group-targets-taiwan.html
-
China Using Powerful Hacking Firms to Run Its Espionage War
5 Cybersecurity Firms Provide Large Pool of Government-Funded Espionage Resources. China’s cyberespionage campaigns, viewed as an extension of the com… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/china-using-powerful-hacking-firms-to-run-its-espionage-war-a-26296
-
Earth Preta’s Cyber Arsenal Expands: New Malware and Strategies Target APAC Governments
A new report from Trend Micro has revealed that Earth Preta, the notorious cyber espionage group, has significantly evolved its tactics and malware ar… First seen on securityonline.info Jump to article: securityonline.info/earth-pretas-cyber-arsenal-expands-new-malware-and-strategies-target-apac-governments/
-
Chinese APT Groups Continue to Leverage Open-Source and Custom Reconnaissance Tools in Cyber Espionage Campaigns
The Natto Thoughts team recently uncovered key insights into the reconnaissance techniques used by Chinese state-sponsored threat actors. A deep dive … First seen on securityonline.info Jump to article: securityonline.info/chinese-apt-groups-continue-to-leverage-open-source-and-custom-reconnaissance-tools-in-cyber-espionage-campaigns/
-
ToneShell Backdoor Targets IISS Defence Summit Attendees in Latest Espionage Campaign
Cyber espionage continues to intertwine with global strategy as the ToneShell backdoor, linked to the notorious Mustang Panda group, reemerges. In a r… First seen on securityonline.info Jump to article: securityonline.info/toneshell-backdoor-targets-iiss-defence-summit-attendees-in-latest-espionage-campaign/
-
Espionage Alert: Google Sheets Exploit For Malware Control
A Google Sheets exploit has recently been discovered by cybersecurity experts Proofpoint. As per the initial information, the platform is being levera… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/espionage-alert-google-sheets-exploit-for-malware-control/
-
Babylon RAT Unleashed: Malaysian Politicians Under Cyber Siege
A recent investigation by Cyble Research and Intelligence Lab (CRIL) has uncovered a sophisticated cyber espionage campaign targeting high-profile pol… First seen on securityonline.info Jump to article: securityonline.info/babylon-rat-unleashed-malaysian-politicians-under-cyber-siege/
-
Tropic Trooper Expands Espionage to Middle East, Targets Human Rights Organizations
The cyber espionage group Tropic Trooper, also known as KeyBoy and Pirate Panda, has been observed shifting its focus to the Middle East, according to… First seen on securityonline.info Jump to article: securityonline.info/tropic-trooper-expands-espionage-to-middle-east-targets-human-rights-organizations/
-
MuddyWater’s Sneaky New Tactic: Hijacking RMM Software for Espionage
Security researchers from the 360 Advanced Threat Research Institute have recently uncovered that the Iranian hacking group MuddyWater is actively lev… First seen on securityonline.info Jump to article: securityonline.info/muddywaters-sneaky-new-tactic-hijacking-rmm-software-for-espionage/
-
Chinese ‘Crimson Palace’ espionage campaign keeps hacking Southeast Asian governments
First seen on therecord.media Jump to article: therecord.media/chinese-crimson-palace-keeps-hacking-asia
-
Cyberattackers Exploit Google Sheets for Malware Control in Likely Espionage Campaign
Cybersecurity researchers have uncovered a novel malware campaign that leverages Google Sheets as a command-and-control (C2) mechanism.The activity, d… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/cyberattackers-exploit-google-sheets.html
-
Chinese hackers use new data theft malware in govt attacks
New attacks attributed to China-based cyber espionage group Mustang Panda show that the threat actor switched to new strategies and malware called FDM… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-hackers-use-new-data-theft-malware-in-govt-attacks/
-
Exposed: Russian military Unit 29155 does digital sabotage, espionage
The US Department of Justice has named five Russian computer hackers as members of Unit 29155 i.e., the 161st Specialist Training Center of the Russia… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/06/unit-29155/
-
Russian GRU Unit Tied to Assassinations Linked to Global Cyber Sabotage and Espionage
A secretive Russian military unit, previously linked to assassinations and destabilization in Europe, is blamed for destructive wiper malware attacks … First seen on securityweek.com Jump to article: www.securityweek.com/russian-gru-unit-tied-to-assassinations-linked-to-global-cyber-sabotage-and-espionage/
-
APT60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor
A South Korea-aligned cyber espionage has been linked to the zero-day exploitation of a now-patched critical remote code execution flaw in Kingsoft WP… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/apt-c-60-group-exploit-wps-office-flaw.html
-
Earth Lusca Using Multiplatform Backdoor to Attack Windows Linux Machines
Earth Lusca is a suspected China-based cyber espionage group active since at least April 2019. Besides this, hackers often target Windows and Linux ma… First seen on gbhackers.com Jump to article: gbhackers.com/earth-lusca-using-multiplatform-backdoor/
-
Chinese Volt Typhoon Exploits Versa Director Flaw, Targets U.S. and Global IT Sectors
The China-nexus cyber espionage group tracked as Volt Typhoon has been attributed with moderate confidence to the zero-day exploitation of a recently … First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/chinese-volt-typhoon-exploits-versa.html
-
Operation DevilTiger: APT12’s Shadowy Tactics and Zero-Day Exploits Unveiled
The QiAnXin Threat Intelligence Center has disclosed the technical details of a sophisticated cyber espionage campaign dubbed >>Operation DevilTiger,
-
Peach Sandstorm Deploys New Tickler Malware in Persistent Espionage Campaigns
Microsoft Threat Intelligence has identified a sophisticated campaign by the Iranian state-sponsored group known as Peach Sandstorm. Between April and… First seen on securityonline.info Jump to article: securityonline.info/peach-sandstorm-deploys-new-tickler-malware-in-persistent-espionage-campaigns/
-
Pioneer Kitten: Iranian hackers partnering with ransomware affiliates
A group of Iranian hackers dubbed Pioneer Kitten by cybersecurity researchers is straddling the line between state-contracted cyber espionage group an… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/28/pioneer-kitten-iranian-hackers-partnering-with-ransomware-affiliates/
-
Researchers uncover ‘SlowTempest’ espionage campaign within China
First seen on therecord.media Jump to article: therecord.media/espionage-campaign-china-slowtempest
-
Patchwork Actors Using Weaponized Encrypted Zip Files to Attack Orgs
The cyber espionage group Patchwork, also known by various aliases, has been active since 2009, primarily targeting Asian organizations in sectors suc… First seen on gbhackers.com Jump to article: gbhackers.com/patchworkweaponized-zip-files/
-
Iranian Hackers Target US in Ransomware and Espionage Attacks
New Reports and Joint Advisory Warn of Growing Cybersecurity Threats Linked to Iran. A joint advisory from the FBI and Cybersecurity and Infrastructur… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/iranian-hackers-target-us-in-ransomware-espionage-attacks-a-26155
-
Russia’s FSB Behind Massive Phishing Espionage Campaign
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/russia-fsb-spearphishing-espionage/
-
The i-Soon Leaks: Germany’s BfV Exposes the Industrialization of Chinese Cyber Espionage
A newly released report from Germany’s Federal Office for the Protection of the Constitution (BfV) unveils insights into the operations of the Chinese… First seen on securityonline.info Jump to article: securityonline.info/the-i-soon-leaks-germanys-bfv-exposes-the-industrialization-of-chinese-cyber-espionage/
-
North Korea Exploited Windows Zero-Day to Deploy Fudmodule
Lazarus Espionage Group’s Sophisticated Malware Evades Antivirus Monitoring. North Korea’s Lazarus hacking team, which focuses on cryptocurrency theft… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-exploited-windows-zero-day-to-deploy-fudmodule-a-26076
-
BeaverTail Malware Attacking Windows Users Via Weaponized Games
Researchers uncovered a new malware campaign dubbed BeaverTail, a North Korean cyber espionage malware family primarily focusing on job seekers. Initi… First seen on gbhackers.com Jump to article: gbhackers.com/beavertail-malware-weaponized-games-attack/
-
University Professors Targeted by North Korean Cyber Espionage Group
The North Korea-linked threat actor known as Kimsuky has been linked to a new set of attacks targeting university staff, researchers, and professors f… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/university-professors-targeted-by-north.html