Cyber Espionage, Kimsuky now impersonate targets to collect intel
NSA, FBI and ROK illustrate the DPRK hackers TTP, used to lure the victims and steal sensitive info. Especially with social engineering and spear phishing.
Cybercrime, Gootloader evolves targeting highly sensitive assets worldwide
Sentinel One cybersecurity experts: It exploits around 700 high-traffic compromised websites as a delivery network, and tailored filenames to lure targets.
Cyber Espionage, North Korea’s hackers target cybersecurity researchers
Google Threat Analysis Group: They use multiple platforms to communicate, a blog as a lure, and a novel social engineering technique.
Cybercrime, the MLM Ponzi Nexus operated during the Covid-19 in India exposed
The multi-level marketing scams proliferate during the pandemic via social engineering. Cybersecurity experts explain how they work and why.
Cybercrime, Malsmoke targets adult site visitors with new ZLoader campaign
Malwarebytes cybersecurity experts: It exploits a fake Java update, social engineering, and a decoy page filled with adult images purporting to be movies.
Cyber Espionage, Operation In(ter)ception hit aerospace-military companies
ESET cyber security experts: The threat actor, maybe North Korea’s Lazarus, exploited custom malware, fake jobs and social engineering via LinkedIn, to compromise the targets.
Cybercrime, Silence has targeted major banks in the sub-Saharan Africa
Kaspersky cyber security experts: The APT is about to begin the final stage of it’s operation and cash out the funds. Many elements confirm that is the work of the russian-speaking hackers.
Cybercrime, TA542 launched international scale campaigns with Emotet
Proofpoint cyber security experts: The group use malware variants that exploit third-party payloads such as Qbot, The Trick, IcedID, and Gootkit. Emotet use will grow.
Cybercrime uses Microsoft Office 365 as a gateway to organizations
Barracuda Networks cyber security experts: In March 2019, 29% of businesses accounts were compromised. For ATOs are used brand impersonation, social engineering, and phishing.
Cybercrime exploits Fake Google reCAPTCHA to spread Banking Malware
Sucuri cyber security experts: To lure the victims are used 2 well known social engineering techniques: impersonification and panic/bait with phishing emails.