Cyber Warfare, Iran cyber army exposed again
Green Leakers spread info on MuddyWater and Tehran’s ministry of Intelligence cyber espionage operations via RANA Institute. In last leak, Lab Dookhtegan revealed source code of APT34 malware.
LookBack spear phishing campaign against US utility companies evolves
Proofpoint cyber security experts: There threat actor, probably a state-sponsored APT, is distributing an updated version of the malware, a RAT. To date at least 17 firms were hit.
Cyber Warfare, USA hit North Korea state sponsored hackers
OFAC sactions Lazarus, Bluenoroff and Andariel. They’re linked to Pyongyang’s RGB and launched cyber attacks to support illicit weapon and missile programs, and to spy and sabotate enemies.
Cloud Atlas updated its attack arsenal with new tools to avoid detection
Kaspersky cyber security experts: The cyber espionage APT postpones the execution of PowerShower until a later stage to make the malware invisible.
Cyber Espionage, APT28 leaverages IoT to access corporate networks
Microsoft cyber security experts: The Russian group aka Fancy Bear, Pawn Storm, Sofacy Group, STRONTIUM, and Sednit) tried to compromise devices to gain initial access.
Cybercrime and other APTs are copying North Korea cyber attacks
F-Secure cyber security experts: The target is the banking/finance sector. The motivations are three: data theft, data integrity and sabotage, and direct financial theft.
Cyber espionage: here it is the new Iran-linked APT34 campaign unveiled
FireEye cyber security experts: Malicious hackers masqueraded as a member of Cambridge University, used LinkedIn to deliver malicious documents and three new malware families.
TA505 cybercrime gang launched new campaigns with Gelup-FlowerPippi malware
Trend Micro cyber security experts: The first malicious code abuses user account control (UAC) bypass and works as a loader for other threats. The second is a dangerous backdoor.
Cybercrime, Microsoft warns of attacks with FlawedAmmyy RAT directly in memory
The malware chain of infection starts with a weaponized email in Korean. The cyber security experts: It’s seems the work of TA505 APT, focused on financial institutions-retail companies.
NASA has been hacked thanks to a Raspberry Pi device
The Agency suffered a hug data breach with approximately 500 MB of data related to Mars missions stolen. The cyber security experts: It’s the work of an APT.