Cyber Espionage, Kimsuky North Korea’s hackers exposed
US CISA, FBI, and CNMF cybersecurity experts: APT employs common social engineering tactics, spearphishing, and watering hole attacks to exfiltrate information.
Cyber Espionage, XDSpy hits Eastern Europe and Balkans since 2011
ESET cybersecurity experts: The targets are primarily government entities. The APT, until now undetected, exploits the XDDown malware and spear phishing.
Cyber Espionage, APT28 targets NATO members and partners with Zebrocy
QuoIntelligence cyber security experts: Russian state hackers exploit fake training docs to spread the malware. There are correlations with ReconHell/BlackWater attack.
Cyber Warfare, attacks on U.S. grow as elections approach
Microsoft cyber security experts: Foreign activity stepped up targeting the 2020 vote. It’s the work of well known actors as Strontium, Zirconium and Phosphorus.
Cyber Espionage, Chinese APT TA413 spreads a new RAT: Sepulcher
Proofpoint cyber security experts: The malware has been distributed in 2 different campaigns Covid-19 themed. One targeted many organisations in EU. The other, against Tibetan dissidents.
Cyber Espionage, Charming Kitten hackers renewed their TTPs
Clearsky cyber security experts: The Iranian APT started impersonating “Deutsche Welle” and the “Jewish Journal” using emails alongside WhatsApp messages and LinkedIn profiles.
Cyber Warfare, U.S. Offers up to 10M for Info to Counter the Election Meddling
Foreign malicious cyber operations could target the vote, the infrastructure, and political groups or campaigns. APTs already attacked Trump and Biden staffers.
Cyber Espionage, StrongPity targets Kurdish community in Syria
Bitdefender cyber security experts: The APT leveraged Trojanized popular tools and could be linked to Turkey. Victims are screened based on a targets list.
Cyber Espionage, Ke3chang exploit a new tool: Ketrum
Intezer cyber security experts: The malware merges the features from Ketrican and Okrum. The APT continues to morph its code and switch basic functionalities in the various backdoors.
Cyber Espionage, Naikon is back with a new malware
Check Point cyber security experts: The China-linked APT exploited the Aria-body backdoor to attack several governments in APAC. It uses different infection chains to deliver the malicious code.