HackDig : Dig high-quality web security articles for hackers

Evilnum Group targets European and British fintech companies

A threat actor tracked as Evilnum targeted financial technology companies, mainly the British and European ones, ESET researchers reported. Evilnum threat actor was first spotted in 2018 while using the homonym malware. Over the years, the group added new tools to its arsenal, including custom and homemade malware along with software purchased from the Go
Publish At:2020-07-11 00:58 | Read:175 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware APT Evilnum hackin

North Korean Lazarus APT stole credit card data from US and EU stores

North Korea-linked Lazarus APT has been stealing payment card data from customers of large retailers in the U.S. and Europe for at least a year. Sansec researchers reported that North Korea-linked Lazarus APT group has been stealing payment card information from customers of large retailers in the U.S. and Europe for at least a year. The threat actors
Publish At:2020-07-06 10:20 | Read:246 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware e-skimming L

AcidBox, a malware that borrows Turla APT exploit, hit Russian organizations

New AcidBox Malware employed in targeted attacks leverages an exploit previously associated with the Russian-linked Turla APT group. Palo Alto Networks researchers analyzed a new malware, dubbed AcidBox, that was employed in targeted attacks and that leverages an exploit previously associated with the Russian-linked Turla APT group. The Turla
Publish At:2020-06-19 11:37 | Read:185 | Comments:0 | Tags:APT Breaking News Hacking Malware hacking news information s

InvisiMole group targets military sector and diplomatic missions in Eastern Europe

Researchers uncovered a recent campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations. Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions
Publish At:2020-06-18 16:19 | Read:198 | Comments:0 | Tags:APT Breaking News Hacking Malware backdoor Gamaredon hacking

Multi-stage APT attack drops Cobalt Strike using Malleable C2 feature

This blog post was authored by Hossein Jazi and Jérôme Segura On June 10, we found a malicious Word document disguised as a resume that uses template injection to drop a .Net Loader. This is the first part of a multi-stage attack that we believe is associated to an APT attack. In the last stage, the threat actors used Cobalt Strike’s Malleable C2 fe
Publish At:2020-06-17 15:39 | Read:144 | Comments:0 | Tags:Malware Threat analysis APT C2 cobalt strike Malleable C2

Operation In(ter)reception targets Military and Aerospace employees in Europe and the Middle East

Experts uncovered a new cyber-espionage campaign, dubbed “Operation In(ter)reception,” aimed at aerospace and military organizations in Europe and the Middle East. Security experts from ESET uncovered a new sophisticated cyber-espionage campaign, dubbed “Operation In(ter)reception,” aimed at aerospace and military organizations in
Publish At:2020-06-17 09:26 | Read:164 | Comments:0 | Tags:APT Breaking News Cyber Crime Cyber warfare Hacking Intellig

Gamaredon group uses a new Outlook tool to spread malware

Russia-linked Gamaredon APT use a new module for Microsoft Outlook that creates custom emails with malicious documents and sends them to a victim’s contacts. Reseaerchers from ESET reported that Russia-linked Gamaredon APT has a new tool in its arsenal, it is a module for Microsoft Outlook that creates custom emails with malicious documents and send
Publish At:2020-06-12 10:13 | Read:148 | Comments:0 | Tags:APT Breaking News Hacking Malware Gamaredon information secu

Looking at Big Threats Using Code Similarity. Part 1

Today, we are announcing the release of KTAE, the Kaspersky Threat Attribution Engine. This code attribution technology, developed initially for internal use by the Kaspersky Global Research and Analysis Team, is now being made available to a wider audience. You can read more about KTAE in our official press release, or go directly to its info page on the Ka
Publish At:2020-06-09 08:07 | Read:196 | Comments:0 | Tags:Featured Security technologies APT Lazarus Malware Technolog

Higaisa threat actors targets organizations using Zeplin platform

A Korean threat actor, tracked as Higaisa, has been using malicious LNK files in recent attacks aimed at organizations that use the Zeplin collaboration platform. The Korean threat actor Higaisa, has been using malicious LNK files in recent attacks aimed at organizations that use the Zeplin collaboration platform. The group is believed to be a nation-s
Publish At:2020-06-08 17:26 | Read:193 | Comments:0 | Tags:APT Hacking Malware Higaisa information security news it sec

Google reveals that foreign hackers are already targeting Trump and Biden campaigns

Google researchers revealed that campaign staffs for both President Donald Trump and Joe Biden have been targeted recently by foreign hackers. Foreign hackers are targeting campaign staffs for both President Donald Trump and Democratic rival Joe Biden ahead of the November US election. The news was revealed by Google in a series of tweets published by
Publish At:2020-06-05 07:53 | Read:276 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Intelligence hacking

Cycldek APT targets Air-Gapped systems using the USBCulprit Tool

A Chinese threat actor tracked as Cycldek (aka Goblin Panda, or Conimes) has developed new tool to steal information from air-gapped systems. Security experts from Kaspersky Lab reported that the Chinese threat actor tracked as Cycldek (aka Goblin Panda, or Conimes) has developed new tool to steal information from air-gapped systems. The Cycldek gr
Publish At:2020-06-04 16:54 | Read:276 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware air-gapped n

New LNK attack tied to Higaisa APT discovered

This post was authored by Hossein Jazi and Jérôme Segura On May 29th, we identified an attack that we believe is part of a new campaign from an Advanced Persistent Threat actor known as Higaisa. The Higaisa APT is believed to be tied to the Korean peninsula, and was first disclosed by Tencent Security Threat Intelligence Center in early 2019. The grou
Publish At:2020-06-04 12:55 | Read:232 | Comments:0 | Tags:Malware Threat analysis APT Higaisa korea LNK PlugX rat

Cycldek: Bridging the (air) gap

Key findings While investigating attacks related to a group named Cycldek post 2018, we were able to uncover various pieces of information on its activities that were not known thus far. In this blog post we aim to bridge the knowledge gap on this group and provide a more thorough insight into its latest activities and modus operandi. Here are some key insig
Publish At:2020-06-03 06:33 | Read:202 | Comments:0 | Tags:APT reports Featured APT Malware

NSA warns Russia-linked APT group is exploiting Exim flaw since 2019

The U.S. NSA warns that Russia-linked APT group known as Sandworm Team have been exploiting a critical flaw in the Exim mail transfer agent (MTA). The U.S. National Security Agency (NSA) is warning that Russia-linked APT group tracked Sandworm Team has been exploiting a critical vulnerability (CVE-2019-10149) in the Exim mail transfer agent (MTA) software
Publish At:2020-05-28 18:26 | Read:247 | Comments:0 | Tags:APT Breaking News Hacking Security CVE-2019-10149 Exim infor

Ke3chang hacking group adds new Ketrum malware to its arsenal

The Ke3chang hacking group added a new malware dubbed Ketrum to its arsenal, it borrows portions of code and features from older backdoors. The Ke3chang hacking group (aka APT15, Vixen Panda, Playful Dragon, and Royal APT) has developed new malware dubbed Ketrum by borrowing parts of the source code and features from their older Ketrican and Okrum backdoo
Publish At:2020-05-28 06:51 | Read:259 | Comments:0 | Tags:APT Cyber warfare Hacking Malware APT15 China cyber espionag

Announce

Share high-quality web security related articles with you:)

Tools