Cloud Atlas updated its attack arsenal with new tools to avoid detection
Kaspersky cyber security experts: The cyber espionage APT postpones the execution of PowerShower until a later stage to make the malware invisible.
Cyber Espionage, APT28 leaverages IoT to access corporate networks
Microsoft cyber security experts: The Russian group aka Fancy Bear, Pawn Storm, Sofacy Group, STRONTIUM, and Sednit) tried to compromise devices to gain initial access.
Cybercrime and other APTs are copying North Korea cyber attacks
F-Secure cyber security experts: The target is the banking/finance sector. The motivations are three: data theft, data integrity and sabotage, and direct financial theft.
Cyber espionage: here it is the new Iran-linked APT34 campaign unveiled
FireEye cyber security experts: Malicious hackers masqueraded as a member of Cambridge University, used LinkedIn to deliver malicious documents and three new malware families.
TA505 cybercrime gang launched new campaigns with Gelup-FlowerPippi malware
Trend Micro cyber security experts: The first malicious code abuses user account control (UAC) bypass and works as a loader for other threats. The second is a dangerous backdoor.
Cybercrime, Microsoft warns of attacks with FlawedAmmyy RAT directly in memory
The malware chain of infection starts with a weaponized email in Korean. The cyber security experts: It’s seems the work of TA505 APT, focused on financial institutions-retail companies.
NASA has been hacked thanks to a Raspberry Pi device
The Agency suffered a hug data breach with approximately 500 MB of data related to Mars missions stolen. The cyber security experts: It’s the work of an APT.
Cyber espionage, MuddyWater has updated it’s POWERSTATS backdoor
Trend Micro cyber security experts: The Iranian state-sponsored APT is using new tools and payloads, which indicates that it’s continuously developing the schemes.
Is APT34 responsible for the Jason cyber espionage tool?
The cyber security expert, Marco Ramilli, analyzed it to match the clues e find if Iranian state-sponsored hackers are behind the operation. Something says Yes, something diverge.
Ukraine again under a cyber attack, probably by Gamaredon
Cybaze-Yoroi ZLAB cyber security experts: The campaign shows the Matryoshka structure to chain SFX archives, typical of APT implant, and the use of a legit third party RAT as payload.