Cyber Espionage, APT36 exploits Coronavirus to spy India
The cyber security experts: The Pakistan-based group used a spear phishing email with a link to a malicious document masquerading as the government of India to spread the malware.
Cyber Espionage, Molerats target 8 organizations in 6 countries with Spark
Palo Alto cyber security experts: The group (aka Gaza Hackers Team and Gaza Cybergang) spread the malware, a backdoor, with a spear-phishing campaign.
Cyber Espionage, North Korea’s Kimsuki evolves its TTPs
Yoroi-ZLab cyber security experts: The APT exploits a malware, compatible with the previous campaigns, and a new strategy to avoid being detected.
Cyber Espionage, Iran still targets Lebanon government
Cyber security experts found an update of the Karkoff implant, used by APT34. It proves that group is still operating and that a new campaign is active. The malware is delivered through spear-phishing emails.
Cyber Warfare, APT34/OilRig and APT33/Elfin cooperated in Fox Kitten Campaign
ClearSky cyber security experts: Iran-linked APTs hit dozens of companies and organizations around the world. They exploit vulnerabilities in systems with VPN-RDP services.
Cyber Espionage, last Gamaredon campaign on Ukraine exposed
Yoroi-ZLab cyber security experts analyzed in depth the Pterodo backdoor. A malware used to collect sensitive information or maintain access on compromised machines.
Cyber Espionage, Malaysia has been targeted by APT40
MyCERT cyber security experts: China-linked hackers leveraged previously compromised email addresses or impersonation of emails in a spear-phishing campaign. The aim: data theft and exfiltration.
Coronavirus, China ask New Delhi’s help to stop Bitter cyber attacks
According to the cyber security experts, the India’s APT is hitting the country since march 2019. And it has targeted medical organizations, that are countering the New China Virus.
Cyber Espionage, Gamaredon targets again Ukraine with new tools
Cyber security expert Vitali Kremez explains why the APT is important today for Russia and it’s new toolset with macro payload execution, for less reliance on traditional binary malware approach.
Cyber Espionage, Twitter confirms attacks to match usernames to phone numbers
The social media platform: State-sponsored actors used a large network of fake accounts to exploit API. Especially from Iran, Israel, and Malaysia. After it, cyber security has been improved.