Africa, China wants to build a maxi naval base in Equatorial Guinea
The WSJ raises the AFRICOM commander warning in April: Beijing wants a port in Bata where it can rearm with munitions and repair military ships.
Cybercrime, APT’s last weapon is the RTF template injection
Proofpoint cybersecurity experts: Groups from India, Russia and China exploit this technique. The files have low detection rate by public antivirus.
Cybercrime, RAMP opens its doors to Chinese hackers
Flashpoint cybersecurity experts: The Russian-language forum sections are now in Russian, English, and Mandarin.
Cyber Espionage, IronHusky targets Defense and IT companies with MysterySnail
Kaspersky cybersecurity experts: The Chinese APT exploits the CVE-2021-40449 zero-day vulnerability in the Win32k kernel driver and the malware to escalate privileges.
Cyber Espionage, APT31 launched a large campaign impacting many French entities
ANSSI cybersecurity experts: The cybercrime actor uses a network of compromised home routers as operational relay boxes.
Cyber Espionage, Chinese APTs use new malware to hit targets in US and Europe
FireEye cybersecurity experts: Threat actors as UNC2630 and UNC2717 are still compromising Pulse Secure VPN devices to infiltrate organizations.
Cyber Espionage, Chinese hackers exploit anti virus flaws to strike
Recorded Future cybersecurity experts: Unit 61419 bought small English AV batches from Western companies through intermediaries.
Cybercrime, Rocke Group uses a new malware to attack via saved SSH keys and weak passwords
Intezer cybersecurity experts: The China-linked APT’s code, after the victim has been infected, executes a Monero cryptominer.
Cyber Espionage, NAIKON exploited RainyDay to target military organizations in Asia
Bitdefender cybersecurity experts: China’s APT used the backdoor to compromise the victims’ network and to get to the information of interest.
Cybercrime, Prometei botnet exploits some Microsoft Exchange vulnerabilities
Cybereason cybersecurity experts: The malware can infect both Windows and Linux systems and has been upgraded with backdoor capabilities.