Tag: espionage
-
Kimsuky APT Group Targets University Researchers in Espionage Campaign
The North Korean state-backed hacking group known as Kimsuky is at it again, this time setting its sights on university researchers and professors in … First seen on securityonline.info Jump to article: securityonline.info/kimsuky-apt-group-targets-university-researchers-in-espionage-campaign/
-
Iranian APT42 Actors Conducting World Wide Surveillance Operations
APT42 (aka Damselfly, UNC788, CALANQUE, Charming Kitten) is a sophisticated Iranian state-sponsored cyber espionage group. This Advanced Persistent Th… First seen on gbhackers.com Jump to article: gbhackers.com/iranian-apt42-global-surveillance-operations/
-
New APT Group ‘Actor240524’ Targets Azerbaijan and Israel with Advanced Tactics
A sophisticated cyber espionage campaign targeting Azerbaijan and Israel has been linked to a previously unidentified advanced persistent threat (APT)… First seen on securityonline.info Jump to article: securityonline.info/new-apt-group-actor240524-targets-azerbaijan-and-israel-with-advanced-tactics/
-
Russian FSB Hackers Behind Espionage Campaign Targeting NGOs
Security Researchers Also Uncovered a New Suspected Russian Threat Group. A Russian hacking group notorious for hack-and-leak operations is behind a r… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/russian-fsb-hackers-behind-espionage-campaign-targeting-ngos-a-26039
-
Rafel RAT, Android Malware from Espionage to Ransomware Operations
esearch by: Antonis Terefos, Bohdan Melnykov Introduction Android, Google’s most popular mobile operating system, powers billions of smartphones and t… First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/rafel-rat-android-malware-from-espionage-to-ransomware-operations/
-
Microsoft Graph API Exploitation in State-Backed Espionage on the Rise
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/microsoft-graph-api-exploitation-in-state-backed-espionage-on-the-rise
-
Nation-state attackers increasingly abuse Microsoft Graph API in espionage campaigns
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/embargo-lifts-6-am-eastern-august-7-symantec-points-to-rise-in-attacks-on-cloud-infrastructure
-
China’s APT41 Targets Taiwan Research Institute for Cyber Espionage
The state-sponsored Chinese threat actor gained access to three systems and stole at least some research data around computing and related technologie… First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/chinas-apt41-targets-taiwan-research-institute-for-cyber-espionage
-
Cyber Espionage Group XDSpy Targets Companies in Russia and Moldova
Companies in Russia and Moldova have been the target of a phishing campaign orchestrated by a little-known cyber espionage group known as XDSpy.The fi… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/cyber-espionage-group-xdspy-targets.html
-
New SideWinder Cyber Attacks Target Maritime Facilities in Multiple Countries
The nation-state threat actor known as SideWinder has been attributed to a new cyber espionage campaign targeting ports and maritime facilities in the… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/new-sidewinder-cyber-attacks-target.html
-
Kimsuky and Andariel Target Seoul’s Construction Industry
Espionage Groups Exploited Software Supply Chain Vulnerabilities to Widen Reach. Prominent North Korean hacker groups Kimsuky and Andariel have been t… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/kimsuky-andariel-target-seouls-construction-industry-a-25961
-
SideWinder APT Group Sets Sights on Ports and Maritime Facilities in Espionage Campaign
The notorious nation-state threat actor SideWinder has launched a sophisticated new campaign targeting ports and maritime facilities in the Indian Oce… First seen on securityonline.info Jump to article: securityonline.info/sidewinder-apt-group-sets-sights-on-ports-and-maritime-facilities-in-espionage-campaign/
-
SideWinder phishing campaign targets maritime facilities in multiple countries
The APT group SideWinder launched a new espionage campaign targeting ports and maritime facilities in the Indian Ocean and Mediterranean Sea. SideWind… First seen on securityaffairs.com Jump to article: securityaffairs.com/166325/breaking-news/sidewinder-phishing-campaign-maritime-facilities.html
-
North Korean Hacker Indicted: Ransomware on Hospitals Funds Military Espionage
A North Korean hacker has been indicted in the U.S. for allegedly using ransomware attacks on American hospitals to finance espionage activities again… First seen on securityonline.info Jump to article: securityonline.info/north-korean-hacker-indicted-ransomware-on-hospitals-funds-military-espionage/
-
Cuckoo Spear Threat Alert: APT10 Targets Japan’s Critical Infrastructure
A newly published threat analysis report from Cybereason Security Services reveals >>Cuckoo Spear,
-
North Korean hacker used hospital ransomware attacks to fund espionage
Federal prosecutors announced the indictment Thursday of a North Korean hacker accused of carrying out ransomware operations that targeted American he… First seen on cyberscoop.com Jump to article: cyberscoop.com/north-korea-hacking-indictment-fbi-apt-45/
-
North Korea’s APT45: From Espionage to Ransomware Extortion
The North Korean hacker group Andariel is accused of stealing confidential information and weapons blueprints from various countries worldwide. The cy… First seen on securityonline.info Jump to article: securityonline.info/north-koreas-apt45-from-espionage-to-ransomware-extortion/
-
North Korean Hackers Target Critical Infrastructure for Military Gain
A joint advisory by the UK, US and South Korea have warned of a global espionage campaign by a North Korea threat actor, Andariel, targeting CNI organ… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korean-critical/
-
Operation ShadowCat Targets Indian Political Observers
Cyble Research & Intelligence Labs (CRIL) has uncovered a sophisticated cyber espionage campaign dubbed >>Operation ShadowCat.
-
Chinese Espionage Group Upgrades Malware Arsenal to Target All Major OS
Symantec said Chinese espionage group Daggerfly has updated its malware toolkit as it looks to target Windows, Linux, macOS and Android operating syst… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/chinese-group-malware-target-os/
-
North Korean Onyx Sleet Using Group Of Malware And Exploits to Gain Intelligence
Onyx Sleet, a cyber espionage group also known as SILENT CHOLLIMA, Andariel, DarkSeoul, Stonefly, and TDrop2, mainly targets the military, defense sec… First seen on gbhackers.com Jump to article: gbhackers.com/north-korean-onyx-sleet-malware-exploits-intelligence/
-
French Government Investigates Suspected Chinese Espionage
National Police Probe Botnet Campaign That Infected 3,000 Machines. The French government has launched an investigation into a suspected Chinese espio… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/french-government-investigates-suspected-chinese-espionage-a-25868
-
Response to CISA Advisory (AA24-207A): North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs
AttackIQ has released a new assessment template in response to the CISA Advisory (AA24-207A) published on July 25, 2024, that highlights cyber espiona… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/response-to-cisa-advisory-aa24-207a-north-korea-cyber-group-conducts-global-espionage-campaign-to-advance-regimes-military-and-nuclear-programs/
-
KnowBe4 Exposes North Korean Cyber Espionage: A Fake Employee Unmasked
KnowBe4, a cybersecurity company, has unveiled an attempt to infiltrate its IT system through a fake employee from North Korea. All company data remai… First seen on securityonline.info Jump to article: securityonline.info/knowbe4-exposes-north-korean-cyber-espionage-a-fake-employee-unmasked/
-
Espionage Group Daggerfly Revamps Toolset, Expands Targets in Wake of Malware Exposure
The notorious espionage group Daggerfly, also known as Evasive Panda and Bronze Highland, has undergone a significant overhaul of its cyber arsenal, l… First seen on securityonline.info Jump to article: securityonline.info/espionage-group-daggerfly-revamps-toolset-expands-targets-in-wake-of-malware-exposure/
-
TAG-100: New Threat Actor Uses Open-Source Tools for Widespread Attacks
Unknown threat actors have been observed leveraging open-source tools as part of a suspected cyber espionage campaign targeting global government and … First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/tag-100-new-threat-actor-uses-open.html
-
Beware! Deceptive LNK Files Used in Indian Political Espionage Campaign
Cybersecurity researchers have uncovered a sophisticated cyber espionage campaign dubbed Operation ShadowCat. This operation, orchestrated by a suspec… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/operation-shadowcat/
-
SneakyChef espionage group targets government agencies with SugarGh0st and more infection techniques
Cisco Talos recently discovered an ongoing campaign from SneakyChef, a newly discovered threat actor using SugarGh0st malware, as early as August 2023… First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/sneakychef-sugarghost-rat/
-
Patchwork Group Expands Cyber Espionage with Advanced Tools
Recently, the Knownsec 404 Advanced Threat Intelligence team identified suspicious activity by the Patchwork group targeting Bhutan. The attack utiliz… First seen on securityonline.info Jump to article: securityonline.info/patchwork-group-expands-cyber-espionage-with-advanced-tools/
-
Cyber Espionage Alert: APT41 Strikes Global Industries, Steals Sensitive Data
Mandiant, in collaboration with Google’s Threat Analysis Group (TAG), has uncovered a widespread cyber espionage campaign orchestrated by the notoriou… First seen on securityonline.info Jump to article: securityonline.info/cyber-espionage-alert-apt41-strikes-global-industries-steals-sensitive-data/