Tag: spear-phishing
-
Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack
A new spear-phishing campaign targeting Brazil has been found delivering a banking malware called Astaroth (aka Guildma) by making use of obfuscated J… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/astaroth-banking-malware-resurfaces-in.html
-
Brazil subjected to Astaroth malware-deploying spear-phishing campaign
First seen on scworld.com Jump to article: www.scworld.com/brief/brazil-subjected-to-astaroth-malware-deploying-spear-phishing-campaign
-
>>Water Makara<< Employs Astaroth Malware in Targeted Attacks on Brazilian Organizations
In a new report by Trend Micro Research, a spear-phishing campaign has emerged in Brazil, using a combination of obfuscated JavaScript and Astaroth ma… First seen on securityonline.info Jump to article: securityonline.info/water-makara-employs-astaroth-malware-in-targeted-attacks-on-brazilian-organizations/
-
Fake Job Applications Deliver Dangerous More_eggs Malware to HR Professionals
A spear-phishing email campaign has been observed targeting recruiters with a JavaScript backdoor called More_eggs, indicating persistent efforts to s… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/fake-job-applications-deliver-dangerous.html
-
Chinese national accused by Feds of spear-phishing for NASA, military source code
First seen on theregister.com Jump to article: www.theregister.com/2024/09/17/chinese_national_nasa_phishing_indictment/
-
Cyberattackers Use HR Targets to Lay More_Eggs Backdoor
The FIN6 group is the likely culprit behind a spear-phishing campaign that demonstrates a shift in tactics, from targeting job seekers to going after … First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/attackers-targeting-recruiters-more_eggs-backdoor
-
US, Microsoft Seize Domains Used in Russian Spear-Phishing
FSB Hackers Stripped of 107 Domains Used to Steal Credentials. The U.S. Department of Justice and Microsoft seized more than 100 websites allegedly us… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/us-microsoft-seize-domains-used-in-russian-spear-phishing-a-26443
-
UK and US Warn of Growing Iranian Spear Phishing Threat
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/uk-us-warn-iranian-spearphishing/
-
China’s ‘Earth Baxia’ Spies Exploit Geoserver to Target APAC Orgs
The APT group uses spear-phishing and a vulnerability in a geospatial data-sharing server to compromise organizations in Taiwan, Japan, the Philippine… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/china-earth-baxia-spies-geoserver-apac-orgs
-
RansomHub Ransomware Using Multiple Techniques To Disable EDR And Antivirus
The RansomHub ransomware group tracked as Water Bakunawa, employs targeted spear-phishing to exploit the Zerologon vulnerability, allowing them to gai… First seen on gbhackers.com Jump to article: gbhackers.com/ransomhub-ransomware-edr-bypass/
-
Sophisticated Spear Phishing Attack Falls Flat Against ITDR
Last month, a threat actor used stolen credentials in an unsuccessful attempt to access a client’s One Drive account. On the surface, this was just an… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/sophisticated-spear-phishing-attack-falls-flat-against-itdr/
-
US charges Chinese national over spear-phishing attacks against agencies
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/us-charges-chinese-national-over-spear-phishing-attacks-against-agencies
-
Chinese man charged for spear-phishing against NASA and US Government
US DoJ charged a Chinese national who used spear-phishing emails to obtain sensitive info from NASA, the U.S. Air Force, Navy, Army, and the FAA. The … First seen on securityaffairs.com Jump to article: securityaffairs.com/168514/cyber-crime/chinese-man-spear-phishing-nasa-us-government.html
-
Iranische Hackergruppe zielt auf politische und diplomatische Vertreter
Kürzlich wurden neue Erkenntnisse über gezielte Spear-Phishing-Angriffe auf Whatsapp-Nutzer veröffentlicht. Diese Angriffe werden der iranischen Grupp… First seen on netzpalaver.de Jump to article: netzpalaver.de/2024/09/12/iranische-hackergruppe-zielt-auf-politische-und-diplomatische-vertreter/
-
Chinese Hackers Charged for Multi-Year Spear-Phishing Attacks
Song Wu, a Chinese national, has been indicted on charges of wire fraud and aggravated identity theft. The charges stem from his alleged involvement i… First seen on gbhackers.com Jump to article: gbhackers.com/chinese-hackers-charged/
-
Mustang Panda Feeds Worm-Driven USB Attack Strategy
A fresh wave of attacks on APAC government entities involves both self-propagating malware spreading via removable drives and a spear-phishing campaig… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/mustang-panda-worm-driven-usb-attack
-
DoJ: Chinese Man Used Spear-Phishing to Obtain Software From NASA, Military
Chinese national Song Wu allegedly sent spear-phishing emails to NASA, Air Force, Navy, Army, and FAA employees. The post DoJ: Chinese Man Used Spear-… First seen on securityweek.com Jump to article: www.securityweek.com/doj-chinese-man-used-spear-phishing-to-obtain-software-from-nasa-military/
-
DOJ indicts Chinese national for spear phishing campaign against NASA, FAA, Air Force
First seen on therecord.media Jump to article: therecord.media/doj-indicts-chinese-nationa-nasa-data-theft-aviation
-
Google raps Iran’s APT42 for raining down spear-phishing attacks
First seen on theregister.com Jump to article: www.theregister.com/2024/08/15/google_iran_apt42_campaigns/
-
Gamaredon APT Launches Spear-Phishing Campaign Targeting Ukrainian Military
A sophisticated spear-phishing campaign orchestrated by the Gamaredon APT group has emerged as a threat to Ukrainian military personnel. Cyble Researc… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/gamaredon-campaign/
-
Decipher Podcast: Rebekah Brown and John Scott-Railton on COLDRIVER and Russian Cyberespionage
Rebekah Brown and John Scott-Railton of the Citizen Lab join Dennis Fisher to dive into their group’s new report on highly targeted spear phishing cam… First seen on duo.com Jump to article: duo.com/decipher/decipher-podcast-rebekah-brown-and-john-scott-railton-on-coldriver-and-russian-cyberespionage
-
Iranian Cyber Group TA453 Targets Jewish Leader with New AnvilEcho Malware
Iranian state-sponsored threat actors have been observed orchestrating spear-phishing campaigns targeting a prominent Jewish figure starting in late J… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/iranian-cyber-group-ta453-targets.html
-
Blind Eagle Hackers Exploit Spear-Phishing to Deploy RATs in Latin America
Cybersecurity researchers have shed light on a threat actor known as Blind Eagle that has persistently targeted entities and individuals in Colombia, … First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/blind-eagle-hackers-exploit-spear.html
-
Western, Russian Civil Society Targeted in Sophisticated Phishing Attacks
Multiple Russian, Belarusian, and Western entities perceived as Russia’s enemies have been targeted in two recent spear-phishing campaigns. The post W… First seen on securityweek.com Jump to article: www.securityweek.com/western-russian-civil-society-targeted-in-sophisticated-phishing-attacks/
-
New APT Actor240524 Weaponizing Official Documents To Deliver Malware
A new APT group, dubbed Actor240524, launched a spear-phishing campaign targeting Azerbaijani and Israeli diplomats on July 1, 2024, where the attacke… First seen on gbhackers.com Jump to article: gbhackers.com/apt-actor240524-weaponizing-official-documents/
-
Ukrainian Institutions Targeted Using HATVIBE and CHERRYSPY Malware
The Computer Emergency Response Team of Ukraine (CERT-UA) has alerted of a spear-phishing campaign targeting a scientific research institution in the … First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/ukrainian-institutions-targeted-using.html
-
CrowdStrike Outage Exploited in New Spear-Phishing Campaign
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/crowdstrike-outage-exploited-in-new-spear-phishing-campaign
-
German CrowdStrike Customers Targeted by Spear-Phishing Campaign
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/german-crowdstrike-customers-targeted-by-spear-phishing-campaign
-
Iranian Cyber-Threat Group Drops New Backdoor, ‘BugSleep’
The group, which has targeted Israel, Saudi Arabia, and other nations, often uses spear-phishing and legitimate remote management tools but is develop… First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/iranian-threat-group-drops-new-backdoor-bugsleep