HackDig : Dig high-quality web security articles for hacker

Turla APT group adapts KopiLuwak backdoor for use in G20-themed attack

Security experts at Proofpoint have collected evidence that suggests that the Turla APT group is conducting a new espionage campaign. The experts discovered a newly dropper for the KopiLuwak backdoor, KopiLuwak is a JavaScript malware that was spotted early this year while the APT was delivering it to at least one victim leveraging a document containing an
Publish At:2017-08-20 03:20 | Read:97 | Comments:0 | Tags:APT Breaking News Cyber warfare cyber espionage Hacking Info

IT threat evolution Q2 2017

Targeted attacks and malware campaigns Back to the future:  looking for a link between old and new APTs This year’s Security Analyst Summit (SAS) included interesting research findings on several targeted attack campaigns.  For example, researchers from Kaspersky Lab and King’s College London presented their findings on a possible link between Mo
Publish At:2017-08-15 11:25 | Read:137 | Comments:0 | Tags:Featured Quarterly Malware Reports APT Cyber espionage Finan

North Korea-Linked Lazarus APT targets U.S. Defense contractors

The North Korea-linked Lazarus APT group as Lazarus is believed to be behind attacks targeting United States defense contractors. According to Palo Alto Networks, the North Korea-linked Lazarus APT group as Lazarus is believed to be behind attacks targeting United States defense contractors. The activity of the Lazarus APT Group surged in 2014 and 2015, its
Publish At:2017-08-14 18:00 | Read:188 | Comments:0 | Tags:APT Breaking News Cyber Crime Hacking Intelligence cyber esp

APT28 hackers are leveraging NSA Hacking tool to spy on Hotels guests

According to FireEye, the notorious Russia-linked APT28 group is behind an ongoing campaign targeting hotels in several European countries. According to FireEye, the notorious Russia-linked APT28 group (Pawn Storm, Fancy Bear, Sofacy, Sednit and Strontium) is behind an ongoing campaign targeting hotels in several European countries. The researchers observed
Publish At:2017-08-11 16:10 | Read:158 | Comments:0 | Tags:APT Breaking News APT28 Cyberespionage Darkhotel ETERNALBLUE

Experts found a link between the KONNI attacks and DarkHotel campaigns against NK

Experts at Cylance noticed that the decoy document used in KONNI attacks is similar to the one used in recent campaigns of the DarkHotel APT. In May, Cisco Talos team discovered a RAT dubbed KONNI malware that targets organizations linked to North Korea. The malware, dubbed by researchers “KONNI,” was undetected for more than 3 years and was used in highly
Publish At:2017-08-10 06:15 | Read:246 | Comments:0 | Tags:APT Breaking News Hacking Intelligence Malware cyber espiona

APT Trends report Q2 2017

Introduction Since 2014, Kaspersky Lab’s Global Research and Analysis Team (GReAT) has been providing threat intelligence reports to a wide-range of customers worldwide, leading to the delivery of a full and dedicated private reporting service. Prior to the new service offering, GReAT published research online for the general public in an effort to hel
Publish At:2017-08-08 10:30 | Read:197 | Comments:0 | Tags:Featured Quarterly Malware Reports APT ExPetr fileless malwa

Irish electricity transmission system operator EirGrid targeted by a nation-state actor

The Irish electricity transmission system operator EirGrid was targeted by a state-sponsored actor, the hackers weren’t discovered at least for two months. The Irish electricity transmission system operator EirGrid was targeted by a state-sponsored attack. EirGrid is the state-owned company that operates the electricity transmission grid across the I
Publish At:2017-08-08 05:45 | Read:182 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Intelligence Eirgrid

The bateleur backdoor is the new weapon in the Carbank gang’s arsenal

Experts at Proofpoint noticed the infamous cyber crime gang Carbanak has added a new JScript backdoor dubbed Bateleur Backdoor to its arsenal. According to researchers at security firm Proofpoint, the infamous cyber crime gang Carbanak has added a new JScript backdoor dubbed Bateleur Backdoor to its arsenal. Carbanak, aka FIN7, has also used updated macros.
Publish At:2017-08-03 08:01 | Read:252 | Comments:0 | Tags:APT Breaking News Cyber Crime Malware bateleur backdoor Carb

Steganography in contemporary cyberattacks

Steganography is the practice of sending data in a concealed format so the very fact of sending the data is disguised. The word steganography is a combination of the Greek words στεγανός (steganos), meaning “covered, concealed, or protected”, and γράφειν (graphein) meaning “writing”. Unlike cryptography, which conceals the cont
Publish At:2017-08-03 06:35 | Read:195 | Comments:0 | Tags:Publications APT Crypto steganography

Experts detailed the new Operation Wilted Tulip campaign of the CopyKittens APT

Researchers from ClearSky and Trend Micro uncovered a new massive cyber espionage campaign conducted by CopyKittens dubbed ‘Operation Wilted Tulip’ A joint investigation conducted by experts from the Israeli cyber-intelligence firm by ClearSky and Trend Micro uncovered a new massive cyber espionage campaign dubbed ‘Operation Wilted Tulip&#
Publish At:2017-07-26 07:20 | Read:234 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Intelligence

Spring Dragon APT used more than 600 Malware samples in different attacks

The threat actor behind Spring Dragon APT has been developing and updating its wide range of tools throughout the years, new attacks reported in South Asia. According to a new report published by Kaspersky Lab, the China-linked APT group Spring Dragon (aka Lotus Blossom, Elise, and Esile) has used more than 600 malware samples in its attacks over the past y
Publish At:2017-07-24 18:30 | Read:158 | Comments:0 | Tags:APT Cyber warfare Hacking Malware China cyber espionage malw

Spring Dragon – Updated Activity

Spring Dragon is a long running APT actor that operates on a massive scale. The group has been running campaigns, mostly in countries and territories around the South China Sea, since as early as 2012. The main targets of Spring Dragon attacks are high profile governmental organizations and political parties, education institutions such as universities, as w
Publish At:2017-07-24 17:05 | Read:121 | Comments:0 | Tags:Research APT Targeted Attacks

DarkHotel APT group leverages new methods to target politicians

According to Bitdefender, DarkHotel APT is back and it is targeting government employees with an interest in North Korea with a technique dubbed inexsmar. According to the security firm Bitdefender, the DarkHotel APT is back and it is targeting government employees with an interest in North Korea with new techniques. The hackers’ victims have been disc
Publish At:2017-07-21 16:31 | Read:251 | Comments:0 | Tags:APT Breaking News Cyber Crime Cyber warfare Hacking

Microsoft sued Fancy Bear to gain control of the domains used in the cyber espionage campaigns

Microsoft used the lawsuit to disrupt a large number of cyber espionage campaigns conducted by infamous Fancy Bear APT hacking group We have discussed several times about hacking back and the case we are going to analyze is a good example of an alternative approach to hit back an APT group. Microsoft used the lawsuit to disrupt a large number of cyber espio
Publish At:2017-07-21 16:30 | Read:197 | Comments:0 | Tags:Breaking News Cyber Crime Cyber warfare Hacking Malware APT

Russian nation-state actors blamed for cyber attacks against Irish energy networks

Irish energy networks have been targeted by spear phishing attacks, Russian nation-state actors are the prime suspects for the cyber attacks. Hackers have targeted Irish energy networks, senior engineers at the Electricity Supply Board (ESB), which supplies both Northern Ireland and the Republic, were targeted by spear phishing messages allegedly sent by a
Publish At:2017-07-17 20:20 | Read:198 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Intelligence

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud