Tag: espionage
-
Chinese Hackers Infiltrate U.S. Internet Providers in Cyber Espionage Campaign
Nation-state threat actors backed by Beijing broke into a handful of U.S. internet service providers (ISPs) as part of a cyber espionage campaign orch… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/chinese-hackers-infiltrate-us-internet.html
-
Advanced Cyberattacks: Patchwork APT’s Nexe Backdoor Campaign Exposed
In a new report from Cyble Research and Intelligence Labs (CRIL), the notorious Patchwork APT group has once again demonstrated its cyber-espionage pr… First seen on securityonline.info Jump to article: securityonline.info/advanced-cyberattacks-patchwork-apts-nexe-backdoor-campaign-exposed/
-
North Korean’s Stonefly shifts from espionage to ransomware, extortion
First seen on scworld.com Jump to article: www.scworld.com/news/north-koreans-stonefly-shifts-from-espionage-to-ransomware-extortion
-
Passive Backdoors, Active Threat: UNC1860’s Espionage Tools Exposed
Mandiant has uncovered alarming evidence of a sophisticated Iranian state-sponsored cyber campaign orchestrated by UNC1860, a threat actor likely affi… First seen on securityonline.info Jump to article: securityonline.info/passive-backdoors-active-threat-unc1860s-espionage-tools-exposed/
-
North Korea-backed cyber espionage campaign targets UK military
National Cyber Security Centre warns of global hacking effort to obtain nuclear and defence intelligence</p><p>North Korean state-backed h… First seen on theguardian.com Jump to article: www.theguardian.com/world/article/2024/jul/25/north-korea-backed-cyber-espionage-campaign-targets-uk-military
-
RomCom Malware Resurfaces With SnipBot Variant
The latest version of the evolving threat is a multistage attack demonstrating a move away from ransomware to purely espionage activities, typically t… First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/romcom-malware-resurfaces-snipbot-variant
-
Patchwork APT Group Unleashes Nexe Backdoor: A New Era in Cyber Espionage Tactics
Recent analyses by Cyble Research and Intelligence Labs (CRIL) have brought to light an ongoing cyber campaign orchestrated by the notorious Patchwork… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/patchwork-apt-group/
-
Sophisticated Cyber Espionage: Earth Baxia Uses CVE-2024-36401 and Cobalt Strike to Infiltrate APAC
In a recent report from Trend Micro, the cyber espionage group Earth Baxia has been identified targeting government organizations in Taiwan and potent… First seen on securityonline.info Jump to article: securityonline.info/sophisticated-cyber-espionage-earth-baxia-uses-cve-2024-36401-and-cobalt-strike-to-infiltrate-apac/
-
China-linked APT group Salt Typhoon compromised some U.S. internet service providers (ISPs)
China-linked threat actors compromised some U.S. internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. Chin… First seen on securityaffairs.com Jump to article: securityaffairs.com/168941/apt/salt-typhoon-china-linked-threat-actors-breached-us-isp.html
-
North Korean APT Bypasses DMARC Email Policies in Cyber-Espionage Attacks
First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/north-korean-apt-bypasses-dmarc-email-cyber-espionage-attacks
-
North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware
A North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospac… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html
-
Phishing Espionage Attack Targets US-Taiwan Defense Conference
First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/espionage-attack-us-taiwan-defense-conference
-
Chinese Engineer Indicted for Alleged Cyber Espionage Campaign Against US Aerospace Industry
A Chinese national, Song Wu, has been indicted on 14 counts of wire fraud and 14 counts of aggravated identity theft, stemming from an alleged multi-y… First seen on securityonline.info Jump to article: securityonline.info/chinese-engineer-indicted-for-alleged-cyber-espionage-campaign-against-us-aerospace-industry/
-
UNC2970’s Backdoor Deployed via Trojanized PDF Reader Targets Critical Infrastructure
Mandiant has unveiled a new wave of cyber-espionage attacks orchestrated by the North Korea-linked group UNC2970. This group has recently employed a s… First seen on securityonline.info Jump to article: securityonline.info/unc2970s-backdoor-deployed-via-trojanized-pdf-reader-targets-critical-infrastructure/
-
Crimson Palace Returns: Chinese State-Sponsored Cyber Espionage Operation Escalates with New Tools and Targets
After a brief hiatus, the Crimson Palace operation, a Chinese state-directed cyber espionage campaign, has resurfaced, armed with new tactics and an e… First seen on securityonline.info Jump to article: securityonline.info/crimson-palace-returns-chinese-state-sponsored-cyber-espionage-operation-escalates-with-new-tools-and-targets/
-
UNC2970 Hackers Attacking Job Seekers Using Weaponized PDF Reader
UNC2970, a North Korean cyber espionage group, used customized SumatraPDF trojans to deliver MISTPEN backdoors to victims through phishing emails pret… First seen on gbhackers.com Jump to article: gbhackers.com/unc2970-hackers-job-pdf-attack/
-
Cyber Threats Intensify in Mexico: Insights from Mandiant on Espionage and Extortion
A new report from Mandiant revealed the increasing cyber threats faced by Mexico, with a complex mix of global espionage and local cybercrime targetin… First seen on securityonline.info Jump to article: securityonline.info/cyber-threats-intensify-in-mexico-insights-from-mandiant-on-espionage-and-extortion/
-
TIDRONE Espionage Group Targets Taiwan Drone Makers in Cyber Campaign
A previously undocumented threat actor with likely ties to Chinese-speaking groups has predominantly singled out drone manufacturers in Taiwan as part… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/tidrone-espionage-group-targets-taiwan.html
-
China Using Powerful Hacking Firms to Run Its Espionage War
5 Cybersecurity Firms Provide Large Pool of Government-Funded Espionage Resources. China’s cyberespionage campaigns, viewed as an extension of the com… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/china-using-powerful-hacking-firms-to-run-its-espionage-war-a-26296
-
Earth Preta’s Cyber Arsenal Expands: New Malware and Strategies Target APAC Governments
A new report from Trend Micro has revealed that Earth Preta, the notorious cyber espionage group, has significantly evolved its tactics and malware ar… First seen on securityonline.info Jump to article: securityonline.info/earth-pretas-cyber-arsenal-expands-new-malware-and-strategies-target-apac-governments/
-
Chinese APT Groups Continue to Leverage Open-Source and Custom Reconnaissance Tools in Cyber Espionage Campaigns
The Natto Thoughts team recently uncovered key insights into the reconnaissance techniques used by Chinese state-sponsored threat actors. A deep dive … First seen on securityonline.info Jump to article: securityonline.info/chinese-apt-groups-continue-to-leverage-open-source-and-custom-reconnaissance-tools-in-cyber-espionage-campaigns/
-
ToneShell Backdoor Targets IISS Defence Summit Attendees in Latest Espionage Campaign
Cyber espionage continues to intertwine with global strategy as the ToneShell backdoor, linked to the notorious Mustang Panda group, reemerges. In a r… First seen on securityonline.info Jump to article: securityonline.info/toneshell-backdoor-targets-iiss-defence-summit-attendees-in-latest-espionage-campaign/
-
Espionage Alert: Google Sheets Exploit For Malware Control
A Google Sheets exploit has recently been discovered by cybersecurity experts Proofpoint. As per the initial information, the platform is being levera… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/espionage-alert-google-sheets-exploit-for-malware-control/
-
Babylon RAT Unleashed: Malaysian Politicians Under Cyber Siege
A recent investigation by Cyble Research and Intelligence Lab (CRIL) has uncovered a sophisticated cyber espionage campaign targeting high-profile pol… First seen on securityonline.info Jump to article: securityonline.info/babylon-rat-unleashed-malaysian-politicians-under-cyber-siege/
-
MuddyWater’s Sneaky New Tactic: Hijacking RMM Software for Espionage
Security researchers from the 360 Advanced Threat Research Institute have recently uncovered that the Iranian hacking group MuddyWater is actively lev… First seen on securityonline.info Jump to article: securityonline.info/muddywaters-sneaky-new-tactic-hijacking-rmm-software-for-espionage/
-
Tropic Trooper Expands Espionage to Middle East, Targets Human Rights Organizations
The cyber espionage group Tropic Trooper, also known as KeyBoy and Pirate Panda, has been observed shifting its focus to the Middle East, according to… First seen on securityonline.info Jump to article: securityonline.info/tropic-trooper-expands-espionage-to-middle-east-targets-human-rights-organizations/
-
Chinese ‘Crimson Palace’ espionage campaign keeps hacking Southeast Asian governments
First seen on therecord.media Jump to article: therecord.media/chinese-crimson-palace-keeps-hacking-asia
-
Cyberattackers Exploit Google Sheets for Malware Control in Likely Espionage Campaign
Cybersecurity researchers have uncovered a novel malware campaign that leverages Google Sheets as a command-and-control (C2) mechanism.The activity, d… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/cyberattackers-exploit-google-sheets.html
-
Chinese hackers use new data theft malware in govt attacks
New attacks attributed to China-based cyber espionage group Mustang Panda show that the threat actor switched to new strategies and malware called FDM… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-hackers-use-new-data-theft-malware-in-govt-attacks/