Cyber Espionage, Chinese APTs use new malware to hit targets in US and Europe
FireEye cybersecurity experts: Threat actors as UNC2630 and UNC2717 are still compromising Pulse Secure VPN devices to infiltrate organizations.
Cybercrime, Colombian Army’s credentials are on sale on an hackers forum
The source should be the Anonymous’ hack in the Latin American country. The information, as violence and protests spread in the country, is dangerous.
Cyber Espionage, Snip3 is a new malware exploited to target aerospace and travel sectors
Microsoft cybersecurity experts: It then delivers RevengeRAT or AsyncRAT for data theft, and payloads as Agent Tesla to exfliltrate it.
Cyber Espionage, Chinese hackers exploit anti virus flaws to strike
Recorded Future cybersecurity experts: Unit 61419 bought small English AV batches from Western companies through intermediaries.
Cyber Espionage, NAIKON exploited RainyDay to target military organizations in Asia
Bitdefender cybersecurity experts: China’s APT used the backdoor to compromise the victims’ network and to get to the information of interest.
Cyber Espionage, Pulse Connect Secure flaws exploited by APTs
FireEye cybersecurity experts: UNC2630 and UNC2717 use the CVE-2021-22893 to spy US and European government, defense, and financial organizations.
Cyber Espionage, APT34 is back with a new backdoor: SideTwist
CheckPoint cybersecurity experts: The Iranian threat actor, aka OilRig, used the malware in a campaign on a Lebanese target.
Cyber Espionage, North Korea’s hackers exploit military security magazines
ASEC cybersecurity experts: An APT uses the April issue of a monthly magazine in Word to distribute targeted malware.
North Korea’s hackers are still targeting cybersecurity community
Google TAG: the threat actors on March 17 set up a new website with associated social media profiles for a fake company called “SecuriElite.”
Cyber Espionage, Facebook blocked Earth Empusa attacks on Uyghurs
The Chinese hackers (aka Evil Eye) targeted activists, journalists and dissidents with various TTPs to infect their devices with malware.