Tag: espionage
-
APT36 Refines Tools in Attacks on Indian Targets
The Pakistan-based advanced persistent threat actor has been carrying on a cyber-espionage campaign targeting organizations on the subcontinent for mo… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/apt36-refines-tools-attacks-indian-targets
-
Hamas-affiliated Threat Actor WIRTE Continues its Middle East Operations and Moves to Disruptive Activity
ey findings: Introduction WIRTE is a Middle Eastern Advanced Persistent Threat (APT) groupactivesince at least 2018. The group is primarily known for engaging in politically motivated cyber-espionage, focusing on intelligence gathering likely linked to regional geopolitical conflicts. WIRTE isbelievedto be a subgroup connected to Gaza Cybergang, a cluster affiliated with Hamas. Since late 2023, Check…
-
Sri Lanka: New Target for T04 APT Group
In a recent report by cybersecurity expert Nimantha Deshappriya, details have emerged about a sustained cyber-espionage campaign orchestrated by the a… First seen on securityonline.info Jump to article: securityonline.info/sri-lanka-new-target-for-t-apt-04-apt-group/
-
IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools
High-profile entities in India have become the target of malicious campaigns orchestrated by the Pakistan-based Transparent Tribe threat actor and a previously unknown China-nexus cyber espionage group dubbed IcePeony.The intrusions linked to Transparent Tribe involve the use of a malware called ElizaRAT and a new stealer payload dubbed ApoloStealer on specific victims of interest, Check…
-
North Korea’s Andariel Pivots to ‘Play’ Ransomware Games
The prominent state-sponsored advanced persistent threat (APT), aka Jumpy Pisces, appears to be moving away from its primary cyber-espionage motives a… First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/north-korea-andariel-play-ransomware
-
Russian Espionage Group Targets Ukrainian Military with Malware via Telegram
A suspected Russian hybrid espionage and influence operation has been observed delivering a mix of Windows and Android malware to target the Ukrainian… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/russian-espionage-group-targets.html
-
Contagious Interview WageMole: North Korea’s New Cyber Espionage Campaigns
In a recent report, Zscaler ThreatLabz uncovers the creative yet deceptive strategies used by North Korean threat actors to infiltrate Western job markets. Through two interconnected campaigns”, Contagious Interview and WageMole”, these... First seen on securityonline.info Jump to article: securityonline.info/contagious-interview-wagemole-north-koreas-new-cyber-espionage-campaigns/
-
APT36 Advances with ElizaRAT and ApoloStealer: New Tactics in Espionage Against India
In a new report, cybersecurity researchers from Check Point detail the evolution of ElizaRAT, a remote access tool (RAT) used by the notorious APT36, also known as Transparent Tribe. The... First seen on securityonline.info Jump to article: securityonline.info/apt36-advances-with-elizarat-and-apolostealer-new-tactics-in-espionage-against-india/
-
10 Key Cyber Policy Questions as Trump Preps for Presidency
Tags: china, cyber, cybercrime, disinformation, espionage, hacking, infrastructure, ransomware, russiaBurning Issues Include Russian Hacking, China’s Hitting Critical Infrastructure Four years since Trump’s last term, the cyber picture looks – in many ways – markedly different. How will the incoming administration tackle Russian disinformation and cyber operations against NATO, rampant Chinese cyber espionage, and cybercriminals and ransomware continuing to disrupt businesses? First seen on govinfosecurity.com…
-
UNC5812: Unmasking the Russian Operation to Sabotage Ukraine’s Military Recruitment
In a revealing discovery, Google’s Threat Intelligence Group has uncovered a suspected Russian espionage campaign aimed at Ukrainian military recruits… First seen on securityonline.info Jump to article: securityonline.info/unc5812-unmasking-the-russian-operation-to-sabotage-ukraines-military-recruitment/
-
Russia-linked espionage group UNC5812 targets Ukraine’s military with malware
Suspected Russia-linked espionage group UNC5812 targets Ukraine’s military with Windows and Android malware via Telegram. Google TAG and Mandiant obse… First seen on securityaffairs.com Jump to article: securityaffairs.com/170346/cyber-warfare-2/unc5812-targets-ukraines-military-malware.html
-
Russian hackers deliver malicious RDP configuration files to thousands
Tags: blizzard, cyber, espionage, government, group, hacker, intelligence, malicious, russia, serviceMidnight Blizzard a cyber espionage group that has been linked to the Russian Foreign Intelligence Service (SVR) is targeting government, academia, de… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/30/midnight-blizzard-spearphishing-rdp-file/
-
FakeCall Android Trojan Evolves with New Evasion Tactics and Expanded Espionage Capabilities
The FakeCall Android banking trojan now employs advanced evasion tactics and expanded surveillance capabilities, posing heightened risks for banks and… First seen on securityweek.com Jump to article: www.securityweek.com/fakecall-android-trojan-evolves-with-new-evasion-tactics-and-expanded-espionage-capabilities/
-
North Korean Cyber Espionage Group Tenacious Pungsan Compromises Open-Source Repositories with Backdoored npm Packages
In a recent report, the Datadog Security Research Team exposed the latest nefarious activities of the Tenacious Pungsan group, a North Korean cyber-es… First seen on securityonline.info Jump to article: securityonline.info/north-korean-cyber-espionage-group-tenacious-pungsan-compromises-open-source-repositories-with-backdoored-npm-packages/
-
Cyber-Espionage Campaign Unveiled: Operation Cobalt Whisper Hits Sensitive Industries
Quick Heal’s SEQRITE Labs has recently uncovered a significant cyber-espionage campaign dubbed Operation Cobalt Whisper, targeting sensitive industrie… First seen on securityonline.info Jump to article: securityonline.info/cyber-espionage-campaign-unveiled-operation-cobalt-whisper-hits-sensitive-industries/
-
AP Sources: Chinese Hackers Targeted Phones of Trump, Vance, People Associated With Harris Campaign
Chinese hackers engaged in a broader espionage operation targeted cellphones used by Donald Trump, JD Vance, and the Kamala Harris campaign. The post … First seen on securityweek.com Jump to article: www.securityweek.com/ap-sources-chinese-hackers-targeted-phones-of-trump-vance-people-associated-with-harris-campaign/
-
Former British PM Cameron Calls for Tech Engagement with China Despite Cyber Threats
Former UK PM David Cameron called for stronger defenses against Chinese cyber espionage while advocating collaboration with Beijing, coinciding with t… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/david-cameron-us-china-cyber/
-
TA866 Group Linked to New WarmCookie Malware in Espionage Campaign
First seen on hackread.com Jump to article: hackread.com/ta866-group-warmcookie-malware-espionage-campaign/
-
Kremlin-linked hackers target Ukraine’s state, military agencies in new espionage campaign
First seen on therecord.media Jump to article: therecord.media/kremlin-linked-apt29-hackers-target-ukrainian-state-agencies-espionage
-
OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf
The Iranian threat actor known as OilRig has been observed exploiting a now-patched privilege escalation flaw impacting the Windows Kernel as part of … First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/oilrig-exploits-windows-kernel-flaw-in.html
-
NSA, FBI, and Allies Expose Ongoing Russian Cyber Espionage Operations
Recently, the National Security Agency (NSA), Federal Bureau of Investigation (FBI), the United States Cyber Command’s Cyber National Mission Force (C… First seen on securityonline.info Jump to article: securityonline.info/nsa-fbi-and-allies-expose-ongoing-russian-cyber-espionage-operations/
-
OilRig Hackers Exploiting Microsoft Exchange Server To Steal Login Details
Earth Simnavaz, an Iranian state-sponsored cyber espionage group, has recently intensified its attacks on critical infrastructure in the UAE and wider… First seen on gbhackers.com Jump to article: gbhackers.com/oilrig-hackers-microsoft-exchange-attack/
-
Russia’s SVR Targets Zimbra, TeamCity Servers for Cyber Espionage
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/russias-svr-targets-zimbra/
-
GoldenJackal Bypasses Air-Gaps in Sophisticated Espionage Campaigns
A new report by MatÃas Porolli, a malware researcher at ESET, has revealed a series of cyberespionage campaigns executed by the elusive Advanced Pers… First seen on securityonline.info Jump to article: securityonline.info/goldenjackal-bypasses-air-gaps-in-sophisticated-espionage-campaigns/
-
NSA cyber chief: Espionage is now Russia’s focus for cyberattacks on Ukraine
First seen on therecord.media Jump to article: therecord.media/russia-ukraine-espionage-luber-nsa
-
NSA cyber director: Espionage is now Russia’s focus for cyberattacks on Ukraine
First seen on therecord.media Jump to article: therecord.media/russia-ukraine-espionage-luber-nsa
-
Python-Based Malware Slithers Into Systems via Legit VS Code
The prolific Chinese APT Mustang Panda is the likely culprit behind a sophisticated cyber-espionage attack that sets up persistent remote access to vi… First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/python-malware-slithers-legit-vs-code
-
NCSC and allies call out Russia’s Unit 29155 over cyber warfare
The NCSC and counterpart agencies from the US and other countries have exposed a long-running campaign of Russian cyber espionage and warfare conducte… First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366609814/NCSC-and-allies-call-out-Russias-Unit-29155-over-cyber-warfare
-
Justice Department Seizes 41 Domains Used by Russian Intelligence in Massive Cyber Espionage Takedown
Yesterday, the Justice Department announced the seizure of 41 internet domains used by Russian intelligence agents to commit cyber fraud and espionage… First seen on securityonline.info Jump to article: securityonline.info/justice-department-seizes-41-domains-used-by-russian-intelligence-in-massive-cyber-espionage-takedown/