Cyber Warfare, the who’s who of Iranian cyber threat
Proofpoint cyber security experts detailed 11 Tehran’s attack groups, their preferred TTP’s, targets, and countries. Including, favourite tactics from phishing to malware.
Geopolitical tension continues to spawn cyber attacks, first of all from Russia-China
VMware Carbon Black’s cyber security experts publish the GIRTR. Risks are growing for the U.S. 2020 elections, voter databases from previous elections are readily available on Dark Web.
Cyber Warfare: North Korea hit targets with a trojan variant, HOPLIGHT
US CISA, FBI and DoD cyber security experts: The HIDDEN COBRA malware collects system information about the victim machine including OS Version, Volume Information and System Time.
Cyber Warfare, Iran cyber army exposed again
Green Leakers spread info on MuddyWater and Tehran’s ministry of Intelligence cyber espionage operations via RANA Institute. In last leak, Lab Dookhtegan revealed source code of APT34 malware.
LookBack spear phishing campaign against US utility companies evolves
Proofpoint cyber security experts: There threat actor, probably a state-sponsored APT, is distributing an updated version of the malware, a RAT. To date at least 17 firms were hit.
Cyber Warfare, USA hit North Korea state sponsored hackers
OFAC sactions Lazarus, Bluenoroff and Andariel. They’re linked to Pyongyang’s RGB and launched cyber attacks to support illicit weapon and missile programs, and to spy and sabotate enemies.
Cloud Atlas updated its attack arsenal with new tools to avoid detection
Kaspersky cyber security experts: The cyber espionage APT postpones the execution of PowerShower until a later stage to make the malware invisible.
North Korea stole US$ 2bn with cyber attacks to fund It’s weapons program
It has been unveiled by a leaked United Nations report. Pyongyang state sponsored hackers as Lazarus preferred cryptocurrency to avoid international controls on money flux.
Cyber Espionage, APT28 leaverages IoT to access corporate networks
Microsoft cyber security experts: The Russian group aka Fancy Bear, Pawn Storm, Sofacy Group, STRONTIUM, and Sednit) tried to compromise devices to gain initial access.
US, NSA will establish the Cyber Security Directorate
The new Division will have it’s IOC on 1 October 2019 and will be lead by Anne Neuberger, already chief of Russia Small Group. The mission: increase the cyber defense posture against foreign threats.