HackDig : Dig high-quality web security articles for hackers

North Korea-linked campaign targets security experts via social media

Google TAG is warning that North Korea-linked hackers targeting security researchers through social media. Google Threat Analysis Group (TAG) is warning that North Korea-linked hackers targeting security researchers through social media. According to the Google team that focuses on nation-state attacks, a North Korea-linked APT group has targeted exper
Publish At:2021-01-26 09:06 | Read:155 | Comments:0 | Tags:APT Breaking News Hacking Malware hacking news information s

SolarWinds Attack: Microsoft sheds lights into Solorigate second-stage activation

Microsoft’s report provides details of the entire SolarWinds attack chain with a deep dive in the second-stage activation of malware and tools. Microsoft published a new report that includes additional details of the SolarWinds supply chain attack. The new analysis shad lights on the handover from the Solorigate DLL backdoor to the Cobalt Strike loa
Publish At:2021-01-21 08:12 | Read:182 | Comments:0 | Tags:APT Breaking News Hacking Malware backdoor hacking news info

FireEye releases an auditing tool to detect SolarWinds hackers’ activity

Cybersecurity firm FireEye has released a report that sheds the light on the SolarWinds attack and the way hackers breached its networks. Cybersecurity firm FireEye has released a report that sheds the light on the SolarWinds attack and the way hackers breached its networks. The experts explained how the UNC2452 and other threat actors breached the inf
Publish At:2021-01-20 09:19 | Read:192 | Comments:0 | Tags:APT Breaking News Hacking Security hacking news information

Winnti APT continues to target game developers in Russia and abroad

A Chinese Threat actor targeted organizations in Russia and Hong Kong with a previously undocumented backdoor, experts warn. Cybersecurity researchers from Positive Technologies have uncovered a series of attacks conducted by a Chinese threat actor that aimed at organizations in Russia and Hong Kong. Experts attribute the attacks to the China-linked Winnt
Publish At:2021-01-15 11:48 | Read:102 | Comments:0 | Tags:APT Cyber warfare Intelligence Malware APT41 backdoor China

Sophisticated hacking campaign uses Windows and Android zero-days

Google Project Zero researchers uncovered a sophisticated hacking campaign that targeted Windows and Android users. The Google Project Zero team has recently launched an initiative aimed at devising new techniques to detect 0-day exploits employed in attacks in the wild. While partnering with the Google Threat Analysis Group (TAG), the experts discovered
Publish At:2021-01-12 21:24 | Read:127 | Comments:0 | Tags:APT Breaking News Hacking Android Chrome hacking news inform

Sunspot, the third malware involved in the SolarWinds supply chain attack

Cybersecurity firm CrowdStrike announced to have discovered a third malware strain, named Sunspot, directly involved in the SolarWinds supply chain attack. According to a new report published by the cybersecurity firm Crowdstrike, a third malware, dubbed SUNSPOT, was involved in the recently disclose SolarWinds supply chain attack. SUNSPOT was discover
Publish At:2021-01-12 09:42 | Read:214 | Comments:0 | Tags:APT Hacking Malware information security news IT Information

Connecting the dots between SolarWinds and Russia-linked Turla APT

Experts have found some similarities between the Sunburst backdoor used in the SolarWinds supply chain attack and Turla’s backdoor Kazuar. Security experts from Kaspersky have identified multiple similarities between the Sunburst malware used in the SolarWinds supply chain attack and the Kazuar backdoor that has been employed in cyber espionage camp
Publish At:2021-01-11 18:06 | Read:189 | Comments:0 | Tags:APT Breaking News Cyber warfare Malware backdoor Hacking hac

Sunburst backdoor – code overlaps with Kazuar

Introduction On December 13, 2020, FireEye published a blog post detailing a supply chain attack leveraging Orion IT, an infrastructure monitoring and management platform by SolarWinds. In parallel, Volexity published an article with their analysis of related attacks, attributed to an actor named “Dark Halo”. FireEye did not link this activity to
Publish At:2021-01-11 06:10 | Read:184 | Comments:0 | Tags:APT reports APT Backdoor Malware Descriptions Malware Techno

North Korea-linked APT37 targets South with RokRat Trojan

Experts spotted the RokRat Trojan being used by North Korea-linked threat actors in attacks aimed at the South Korean government. On December 7 2020 researchers from Malwarebytes uncovered a campaign targeting the South Korean government with a variant of the RokRat RAT. The experts found a malicious document uploaded to Virus Total related to a meetin
Publish At:2021-01-07 15:20 | Read:141 | Comments:0 | Tags:APT Breaking News Cyber warfare Malware Hacking hacking news

Experts linked ransomware attacks to China-linked APT27

Researchers from security firms Profero and Security Joes linked a series of ransomware attacks to the China-linked APT27 group. Security researchers from security firms Profero and Security Joes investigated a series of ransomware attacks against multiple organizations and linked them to China-linked APT groups. The experts attribute the attacks to th
Publish At:2021-01-04 22:18 | Read:174 | Comments:0 | Tags:APT Breaking News Cyber warfare Malware APT27 China Cyberesp

New alleged MuddyWater attack downloads a PowerShell script from GitHub

Security expert spotted a new piece of malware that leverages weaponized Word documents to download a PowerShell script from GitHub. Security expert discovered a new piece of malware uses weaponized Word documents to download a PowerShell script from GitHub. This PowerShell script is also used by threat actors to download a legitimate image f
Publish At:2021-01-04 06:42 | Read:239 | Comments:0 | Tags:APT Breaking News Hacking GitHub hacking news information se

COVID-19 themed attacks December 19, 2020– January 02, 2021

This post includes the details of the COVID-19 themed attacks launched from December 19, 2020– January 02, 2021. 25 December, 2020 – North Korea-linked Lazarus APT targets the COVID-19 research The North Korea-linked Lazarus APT group has recently launched cyberattacks against at least two organizations involved in COVID19 research. 30 Decembe
Publish At:2021-01-03 07:18 | Read:366 | Comments:0 | Tags:Breaking News APT coronavirus COVID-19 Hacking hacking news

SolarWinds hackers gained access to Microsoft source code

The threat actors behind the SolarWinds supply chain attack could have had access to the source code of several Microsoft products. The threat actors behind the SolarWinds attack could have compromised a small number of internal accounts and used at least one of them to view source code in a number of source code repositories. Shortly after the disclos
Publish At:2020-12-31 20:48 | Read:334 | Comments:0 | Tags:APT Breaking News Hacking hacking news information security

Security Affairs newsletter Round 294

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. A massive fraud operation used mobile device emulators to steal millions from online bank accountsSolarWinds hackers also breached the US NNSA nuclear agencyClop ransomware gang paralyzed flavor and frag
Publish At:2020-12-27 11:30 | Read:330 | Comments:0 | Tags:Breaking News APT Hacking hacking news information security

North Korea-linked Lazarus APT targets the COVID-19 research

The North Korea-linked Lazarus APT group has recently launched cyberattacks against at least two organizations involved in COVID-19 research. The North Korea-linked APT group Lazarus has recently launched cyberattacks against two entities involved in COVID-19 research. The activity of the Lazarus APT group surged in 2014 and 2015, its members
Publish At:2020-12-25 15:20 | Read:331 | Comments:0 | Tags:APT Breaking News Malware backdoor coronavirus COVID-19 Hack

Tools

Tag Cloud