Tag: russia

Surge in XSS Cyberattacks Targets Popular Webmail Platforms, ESET Reports

Jun 21, 2025 10:36 PM

Tags: cyber, cyberattack, defense, espionage, group, russia, service, xss

A recent report from ESET has uncovered a sophisticated cyber espionage campaign by the Russia-aligned Sednit group, targeting high-value webmail platforms through cross-site scripting (XSS) attacks. Dubbed Operation RoundPress, this operation has compromised popular webmail services such as Roundcube, Horde, MDaemon, and Zimbra, with a primary focus on governmental entities and defense organizations in Eastern…
Israel Says Iran Is Hacking Security Cameras for Spying

Jun 21, 2025 12:35 PM

Tags: cctv, china, data, hacker, hacking, Internet, iran, russia, ukraine

Plus: Ukrainian hackers reportedly knock out a key Russian internet provider, China’s Salt Typhoon hackers claim another victim, and the UK hits 23andMe with a hefty fine over its 2023 data breach. First seen on wired.com Jump to article: www.wired.com/story/israel-says-iran-is-hack-security-cameras-for-spying/
Cyberattack Disrupts Russian Dairy Supply Chain by Targeting Animal Certification System

Jun 20, 2025 11:35 PM

Tags: attack, compliance, cyber, cyberattack, russia, supply-chain

In a Russia’s dairy supply chain, a suspected cyberattack has targeted the Mercury component of the national veterinary certification system, forcing it into emergency operation mode. This critical system, integral to the processing of veterinary accompanying documents, ensures the traceability and safety compliance of animal-derived products, including dairy. The attack has temporarily halted normal operations,…
Beware the CyberAv3ngers

Jun 20, 2025 9:35 PM

Tags: china, cyber, hacking, iran, risk, russia

Iranian OT Hacking Team Has Gone Quiet “¦ Too Quiet. Armed exchanges between Iran and Israel and the prospect of U.S. armed intervention against Tehran has cyber defenders warning about hacking risks to critical infrastructure. Iran’s CyberAv3ngers doesn’t possess the sophistication of Chinese or Russian actors but it’s still a persistent threat. First seen on…
Cybersecurity Snapshot: Tenable Report Spotlights Cloud Exposures, as Google Catches Pro-Russia Hackers Impersonating Feds

Jun 20, 2025 7:35 PM

Tags: access, advisory, ai, api, apple, attack, authentication, best-practice, business, cisa, cisco, cloud, conference, container, control, credentials, cve, cyber, cybersecurity, data, data-breach, detection, email, encryption, endpoint, exploit, google, governance, government, group, guide, hacker, Hardware, identity, infrastructure, intelligence, Internet, kubernetes, linux, macOS, microsoft, mitigation, mobile, monitoring, network, oracle, password, phishing, ransomware, risk, russia, service, social-engineering, software, sql, strategy, tactics, technology, threat, tool, update, vmware, vulnerability, windows

Check out highlights from Tenable’s “2025 Cloud Security Risk Report,” which delves into the critical risk from insecure cloud configurations. Plus, Google reveals a Russia-sponsored social engineering campaign that targeted prominent academics’ Gmail accounts. And get the latest on AI system security, just-in-time access, CIS Benchmarks and more! Dive into six things that are top…
Hackers Use Social Engineering to Target Expert on Russian Operations

Jun 20, 2025 6:35 PM

Tags: cyberattack, exploit, google, hacker, mfa, password, russia, social-engineering

Citizen Lab and Google uncovered a new, sophisticated cyberattack linked to Russian state actors that exploits App-Specific Passwords, bypassing Multi-Factor Authentication. Discover how to protect yourself from these evolving threats. First seen on hackread.com Jump to article: hackread.com/hackers-use-social-engineering-expert-russian-operations/
Russian dairy supply disrupted by cyberattack on animal certification system

Jun 20, 2025 4:35 PM

Tags: cyberattack, russia

The digital certification system used by Russia’s producers and suppliers of meat, dairy, eggs and other animal products was taken offline after a cyberattack. First seen on therecord.media Jump to article: therecord.media/russia-dairy-supply-disrupted-cyberattack
Russia Expert Falls Prey to Elite Hackers Disguised as US Officials

Jun 20, 2025 10:35 AM

Tags: attack, hacker, phishing, russia, spear-phishing

A prominent expert on Russian information operations was targeted by a sophisticated spear phishing attack likely coming from Russian hackers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/russia-expert-elite-hackers-us/
Russian APT UNC6293 Exploits Google Application-Specific Passwords to Hack Critics

Jun 20, 2025 5:35 AM

Tags: apt, exploit, google, password, russia

The post Russian APT UNC6293 Exploits Google Application-Specific Passwords to Hack Critics appeared first on Daily CyberSecurity. First seen on securityonline.info Jump to article: securityonline.info/russian-apt-unc6293-exploits-google-application-specific-passwords-to-hack-critics/
Argentina uncovers suspected Russian spy ring behind disinformation campaigns

Jun 19, 2025 3:36 PM

Tags: disinformation, government, russia, spy

Argentina’s government told local media that authorities had detected an operation led by Russians that was spreading propaganda and disinformation. First seen on therecord.media Jump to article: therecord.media/argentina-russia-spies-disinformation-project-lakhta
Finland could charge Russia-linked ship’s officers over cable breaks by ‘August at the latest’

Jun 19, 2025 2:35 PM

Tags: russia

Finland’s prosecution authority could bring charges soon against three Georgian nationals who were the most senior officers aboard a Russia-linked ship that dragged its anchor through Baltic Sea cables last year. First seen on therecord.media Jump to article: therecord.media/finland-could-charge-eagle-s-ship-officers-cable-breaks
Sophisticated Phishing Attack Uses ASP Pages to Target Prominent Russia Critics Google

Jun 19, 2025 1:35 PM

Tags: attack, cyber, google, group, intelligence, phishing, russia, threat

Google Threat Intelligence Group (GTIG), in collaboration with external partners, has uncovered a sophisticated phishing campaign orchestrated by a Russia state-sponsored cyber threat actor, tracked as UNC6293. Active from at least April through early June 2025, this campaign specifically targeted prominent academics and critics of Russia. GTIG assesses with low confidence that UNC6293 is associated…
Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign

Jun 19, 2025 11:03 AM

Tags: 2fa, access, exploit, google, group, intelligence, password, phishing, russia, social-engineering, threat

Threat actors with suspected ties to Russia have been observed taking advantage of a Google account feature called application specific passwords (or app passwords) as part of a novel social engineering tactic designed to gain access to victims’ emails.Details of the highly targeted campaign were disclosed by Google Threat Intelligence Group (GTIG) and the Citizen…
Account takeover attacks spoofing US State Department impact Russia researcher

Jun 17, 2025 10:54 PM

Tags: attack, russia

First seen on scworld.com Jump to article: www.scworld.com/brief/account-takeover-attacks-spoofing-us-state-department-impact-russia-researcher
Russia detects first SuperCard malware attacks skimming bank data via NFC

Jun 17, 2025 4:54 PM

Tags: access, attack, communications, data, finance, malware, nfc, russia

Malware detected previously in Italy has popped up in Russia, researchers said. Attackers use it to access devices’ near field communications (NFC) and steal payment card data. First seen on therecord.media Jump to article: therecord.media/supercard-nfc-banking-malware-russia
Hackers impersonating US government compromise email account of prominent Russia researcher

Jun 16, 2025 2:54 PM

Tags: email, government, hacker, russia

Keir Giles, the author of “Russia’s War on Everybody” and a consulting fellow at the Chatham House think tank, said attackers impersonated the U.S. State Department to hack into his email accounts. First seen on therecord.media Jump to article: therecord.media/keir-giles-russia-researcher-email-hacked
RFK Jr. Orders HHS to Give Undocumented Migrants’ Medicaid Data to DHS

Jun 14, 2025 12:54 PM

Tags: data, infrastructure, phone, russia, spyware, ukraine

Plus: Spyware is found on two Italian journalists’ phones, Ukraine claims to have hacked a Russian aircraft maker, police take down major infostealer infrastructure, and more. First seen on wired.com Jump to article: www.wired.com/story/rfk-jr-orders-hhs-to-give-undocumented-migrants-medicaid-data-to-dhs/
Cybersecurity Snapshot: NIST Offers Zero Trust Implementation Advice, While OpenAI Shares ChatGPT Misuse Incidents

Jun 13, 2025 7:54 PM

Tags: access, ai, attack, best-practice, breach, chatgpt, china, cloud, computer, computing, control, credentials, crime, cyber, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, detection, encryption, endpoint, exploit, finance, fraud, government, guide, Hardware, identity, infrastructure, intelligence, Internet, iot, korea, law, least-privilege, linkedin, malicious, malware, military, ml, mobile, monitoring, network, nist, north-korea, openai, phishing, phone, programming, ransomware, risk, russia, scam, service, social-engineering, software, supply-chain, technology, theft, threat, tool, update, vulnerability, zero-trust

Check out NIST best practices for adopting a zero trust architecture. Plus, learn how OpenAI disrupted various attempts to abuse ChatGPT. In addition, find out what Tenable webinar attendees said about their exposure management experiences. And get the latest on cyber crime trends, a new cybersecurity executive order and more! Dive into six things that…
Belarusian hackers taunt Kaspersky over report detailing their attacks

Jun 12, 2025 5:54 PM

Tags: attack, hacker, kaspersky, russia

A recent Kaspersky report offers a rare glimpse into the alleged arsenal of politically motivated hackers waging a digital war against authoritarian regimes in Russia and Belarus. First seen on therecord.media Jump to article: therecord.media/belarusian-hackers-taunt-kaspersky-ver-report
Is attacker laziness enabled by genAI shortcuts making them easier to catch?

Jun 11, 2025 5:55 AM

Tags: ai, attack, chatgpt, ciso, control, cyberattack, data, defense, detection, email, fraud, gartner, group, Hardware, infrastructure, jobs, korea, malicious, malware, monitoring, north-korea, open-source, openai, risk, russia, software, strategy, tactics, threat, tool, windows

Tactics of attackers: The OpenAI report, published in June, detailed a variety of defenses the company has deployed against fraudsters. One, for example, involved bogus job applications.”We identified and banned ChatGPT accounts associated with what appeared to be multiple suspected deceptive employment campaigns. These threat actors used OpenAI’s models to develop materials supporting what may…
LockBit 3.0 leveraged in novel DarkGaboon attacks against Russia

Jun 10, 2025 9:55 PM

Tags: attack, lockbit, russia

First seen on scworld.com Jump to article: www.scworld.com/brief/lockbit-3-0-leveraged-in-novel-darkgaboon-attacks-against-russia
Hundreds of Russian devices hit by Rare Werewolf cryptomining attacks

Jun 10, 2025 7:55 PM

Tags: attack, russia

The campaign has affected hundreds of Russian users, particularly targeting industrial enterprises and engineering schools, with additional victims reported in Belarus and Kazakhstan. First seen on therecord.media Jump to article: therecord.media/russian-devices-hit-by-rare-werewolf-crypto-mining
OpenAI Shuts Down 10 Malicious AI Ops Linked to China, Russia, Iran, N. Korea

Jun 10, 2025 7:55 PM

Tags: ai, china, intelligence, iran, korea, malicious, openai, russia

OpenAI, a leading artificial intelligence company, has revealed it is actively fighting widespread misuse of its AI tools… First seen on hackread.com Jump to article: hackread.com/openai-shuts-down-ai-ops-china-russia-iran-nkorea/
OpenAI’s ChatGPT a Hit With Nation-State Hackers

Jun 10, 2025 7:55 PM

Tags: ai, chatgpt, china, hacker, intelligence, iran, korea, malicious, malware, north-korea, openai, russia, tool

Malicious Accounts Linked to Malware, Influence Operations. OpenAI is using its artificial intelligence models to detect and counter abuse and has banned accounts associated with malicious state-linked operations. Hackers aligned with Russia, China, North Korea and Iran have used OpenAI’s tools for malware development and social media manipulation. First seen on govinfosecurity.com Jump to article:…
Hundreds of Russian devices hit by Rare Werewolf crypto-mining attacks

Jun 10, 2025 5:55 PM

Tags: attack, crypto, russia

The campaign has affected hundreds of Russian users, particularly targeting industrial enterprises and engineering schools, with additional victims reported in Belarus and Kazakhstan. First seen on therecord.media Jump to article: therecord.media/russian-devices-hit-by-rare-werewolf-crypto-mining
Russia-linked PathWiper malware hits Ukrainian infrastructure

Jun 10, 2025 12:55 PM

Tags: apt, attack, backup, cisco, ciso, compliance, control, cyber, detection, endpoint, finance, fortinet, infrastructure, insurance, intelligence, malware, network, PurpleTeam, resilience, risk, russia, tactics, threat, tool, ukraine, vulnerability, zero-trust

Echoes of past attacks: While PathWiper shares tactical similarities with HermeticWiper, its enhanced capabilities reveal a clear evolution in wiper malware sophistication. The new variant employs advanced techniques, such as querying registry keys to locate network drives and dismounting volumes to bypass protections, a stark contrast to HermeticWiper’s simpler approach of sequentially targeting drives numbered…
Malware Deployment Campaigns: ‘Librarian Ghouls’ APT Group Targets Organizations

Jun 10, 2025 12:55 PM

Tags: apt, cyber, email, group, malware, phishing, russia, threat

The Advanced Persistent Threat (APT) group known as >>Librarian Ghouls,
Rare Werewolf APT Uses Legitimate Software in Attacks on Hundreds of Russian Enterprises

Jun 10, 2025 10:54 AM

Tags: apt, attack, cyber, kaspersky, malicious, russia, software, threat

The threat actor known as Rare Werewolf (formerly Rare Wolf) has been linked to a series of cyber attacks targeting Russia and the Commonwealth of Independent States (CIS) countries.”A distinctive feature of this threat is that the attackers favor using legitimate third-party software over developing their own malicious binaries,” Kaspersky said. “The malicious functionality of…
Don’t give hacktivists what they really want

Jun 9, 2025 9:55 PM

Tags: attack, data, ddos, group, Internet, russia

DDoS attacks are increasingly targeting critical infrastructureHacktivism’s reemergence explained: Data drops and defacements for social justiceLondon internet attack highlights confusing hacktivism movementRash of hacktivism incidents accompany Russia’s invasion of UkrainePro-Israel hacktivist group brings down 70% of gas stations in Iran>> First seen on csoonline.com Jump to article: www.csoonline.com/article/3985995/digital-marauders-who-just-want-attention.html
Limited Canva Creator Data Exposed Via AI Chatbot Database

Jun 9, 2025 7:54 PM

Tags: ai, data, data-breach, russia, startup

A Chroma database operated by Russian AI chatbot startup My Jedai was found exposed online, leaking survey responses… First seen on hackread.com Jump to article: hackread.com/limited-canva-creator-data-expose-ai-chatbot-database/