Tag: espionage
-
Cuckoo Spear Threat Alert: APT10 Targets Japan’s Critical Infrastructure
A newly published threat analysis report from Cybereason Security Services reveals >>Cuckoo Spear,
-
North Korean hacker used hospital ransomware attacks to fund espionage
Federal prosecutors announced the indictment Thursday of a North Korean hacker accused of carrying out ransomware operations that targeted American he… First seen on cyberscoop.com Jump to article: cyberscoop.com/north-korea-hacking-indictment-fbi-apt-45/
-
North Korea’s APT45: From Espionage to Ransomware Extortion
The North Korean hacker group Andariel is accused of stealing confidential information and weapons blueprints from various countries worldwide. The cy… First seen on securityonline.info Jump to article: securityonline.info/north-koreas-apt45-from-espionage-to-ransomware-extortion/
-
North Korean Hackers Target Critical Infrastructure for Military Gain
A joint advisory by the UK, US and South Korea have warned of a global espionage campaign by a North Korea threat actor, Andariel, targeting CNI organ… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/north-korean-critical/
-
Operation ShadowCat Targets Indian Political Observers
Cyble Research & Intelligence Labs (CRIL) has uncovered a sophisticated cyber espionage campaign dubbed >>Operation ShadowCat.
-
Chinese Espionage Group Upgrades Malware Arsenal to Target All Major OS
Symantec said Chinese espionage group Daggerfly has updated its malware toolkit as it looks to target Windows, Linux, macOS and Android operating syst… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/chinese-group-malware-target-os/
-
North Korean Onyx Sleet Using Group Of Malware And Exploits to Gain Intelligence
Onyx Sleet, a cyber espionage group also known as SILENT CHOLLIMA, Andariel, DarkSeoul, Stonefly, and TDrop2, mainly targets the military, defense sec… First seen on gbhackers.com Jump to article: gbhackers.com/north-korean-onyx-sleet-malware-exploits-intelligence/
-
French Government Investigates Suspected Chinese Espionage
National Police Probe Botnet Campaign That Infected 3,000 Machines. The French government has launched an investigation into a suspected Chinese espio… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/french-government-investigates-suspected-chinese-espionage-a-25868
-
Response to CISA Advisory (AA24-207A): North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs
AttackIQ has released a new assessment template in response to the CISA Advisory (AA24-207A) published on July 25, 2024, that highlights cyber espiona… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/response-to-cisa-advisory-aa24-207a-north-korea-cyber-group-conducts-global-espionage-campaign-to-advance-regimes-military-and-nuclear-programs/
-
KnowBe4 Exposes North Korean Cyber Espionage: A Fake Employee Unmasked
KnowBe4, a cybersecurity company, has unveiled an attempt to infiltrate its IT system through a fake employee from North Korea. All company data remai… First seen on securityonline.info Jump to article: securityonline.info/knowbe4-exposes-north-korean-cyber-espionage-a-fake-employee-unmasked/
-
Espionage Group Daggerfly Revamps Toolset, Expands Targets in Wake of Malware Exposure
The notorious espionage group Daggerfly, also known as Evasive Panda and Bronze Highland, has undergone a significant overhaul of its cyber arsenal, l… First seen on securityonline.info Jump to article: securityonline.info/espionage-group-daggerfly-revamps-toolset-expands-targets-in-wake-of-malware-exposure/
-
TAG-100: New Threat Actor Uses Open-Source Tools for Widespread Attacks
Unknown threat actors have been observed leveraging open-source tools as part of a suspected cyber espionage campaign targeting global government and … First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/tag-100-new-threat-actor-uses-open.html
-
Beware! Deceptive LNK Files Used in Indian Political Espionage Campaign
Cybersecurity researchers have uncovered a sophisticated cyber espionage campaign dubbed Operation ShadowCat. This operation, orchestrated by a suspec… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/operation-shadowcat/
-
SneakyChef espionage group targets government agencies with SugarGh0st and more infection techniques
Cisco Talos recently discovered an ongoing campaign from SneakyChef, a newly discovered threat actor using SugarGh0st malware, as early as August 2023… First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/sneakychef-sugarghost-rat/
-
Patchwork Group Expands Cyber Espionage with Advanced Tools
Recently, the Knownsec 404 Advanced Threat Intelligence team identified suspicious activity by the Patchwork group targeting Bhutan. The attack utiliz… First seen on securityonline.info Jump to article: securityonline.info/patchwork-group-expands-cyber-espionage-with-advanced-tools/
-
Cyber Espionage Alert: APT41 Strikes Global Industries, Steals Sensitive Data
Mandiant, in collaboration with Google’s Threat Analysis Group (TAG), has uncovered a widespread cyber espionage campaign orchestrated by the notoriou… First seen on securityonline.info Jump to article: securityonline.info/cyber-espionage-alert-apt41-strikes-global-industries-steals-sensitive-data/
-
TAG-100’s Global Espionage Campaign: Exploiting Open-Source Tools
A newly identified cyberespionage group, dubbed TAG-100 by cybersecurity firm Recorded Future, has been linked to a series of sophisticated attacks ta… First seen on securityonline.info Jump to article: securityonline.info/tag-100s-global-espionage-campaign-exploiting-open-source-tools/
-
Australian Defence Force Private and Husband Charged with Espionage for Russia
Two Russian-born Australian citizens have been arrested and charged in the country for spying on behalf of Russia as part of a complex law enforcement… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/australian-defence-force-private-and.html
-
Global Cyber Espionage Campaign Launched by Novel TAG-100 Operation
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/global-cyber-espionage-campaign-launched-by-novel-tag-100-operation
-
Google Is Piloting Face Recognition for Office Security
Plus: A cloud company says notorious Russian hacker group APT29 attacked it, Chinese hackers use ransomware to hide their espionage campaigns, and a b… First seen on wired.com Jump to article: www.wired.com/story/google-face-recognition-office-safety-security-roundup/
-
‘CloudSorcerer’ Leverages Cloud Services in Cyber-Espionage Campaign
First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/cloudsorceror-public-cloud-cyberespionage-campaign
-
Velvet Ant Exploits Cisco Zero-Day Flaw
Recent events in the cybersecurity landscape have brought to light the activities of a China-nexus cyber espionage group known as Velvet Ant. The thre… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/velvet-ant-exploits-cisco-zero-day-flaw/
-
The Julian Assange Saga Is Finally Over
Tags: espionageWikiLeaks founder Julian Assange has agreed to plead guilty to one count of espionage in US court on Wednesday, ending a years-long legal battle betwe… First seen on wired.com Jump to article: www.wired.com/story/julian-assange-wikileaks-plea-deal/
-
Chinese Hackers Exploiting Cisco Switches Zero-Day to Deliver Malware
A China-nexus cyber espionage group named Velvet Ant has been observed exploiting a zero-day flaw in Cisco NX-OS Software used in its switches to deli… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/chinese-hackers-exploiting-cisco.html
-
Espionage Threat Actor Hits Multiple Government Entities
Cisco Talos researchers have linked known Gh0stRAT campaigns targeting public and private sector entities to a Chinese-speaking threat actor called Sn… First seen on duo.com Jump to article: duo.com/decipher/espionage-threat-actor-hits-multiple-government-entities
-
Kimusk’s HappyDoor Executed Via regsvr32 File To Evade Detection
Kimsuky, also known as the Velvet Chollima, Black Banshee, THALLIUM, or Emerald Sleet, is a North Korean state-sponsored advanced cyber espionage grou… First seen on gbhackers.com Jump to article: gbhackers.com/kimsuky-happydoor-regsvr32-evade-detection/
-
RedJuliett Cyber Espionage Campaign Hits 75 Taiwanese Organizations
A likely China-linked state-sponsored threat actor has been linked to a cyber espionage campaign targeting government, academic, technology, and diplo… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/redjuliett-cyber-espionage-campaign.html
-
Multiple Threat Actors Deploying Open-Source Rafel RAT to Target Android Devices
Multiple threat actors, including cyber espionage groups, are employing an open-source Android remote administration tool called Rafel RAT to meet the… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/iranian-hackers-deploy-rafel-rat-in.html
-
Chinese Hackers Deploy SpiceRAT and SugarGh0st in Global Espionage Campaign
A previously undocumented Chinese-speaking threat actor codenamed SneakyChef has been linked to an espionage campaign primarily targeting government e… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/chinese-hackers-deploy-spicerat-and.html
-
‘ChamelGang’ APT Disguises Espionage Activities With Ransomware
First seen on darkreading.com Jump to article: www.darkreading.com/ics-ot-security/china-nexus-group-using-ransomware-to-disguise-cyber-espionage-activities