HackDig : Dig high-quality web security articles

Nobelium continues to target organizations worldwide with custom malware

Russia-linked Nobelium APT group is using a new custom malware dubbed Ceeloader in attacks against organizations worldwide. Mandiant researchers have identified two distinct clusters of activity, tracked UNC3004 and UNC2652, that were associated with the Russia-linked Nobelium APT group (aka UNC2452). The NOBELIUM APT (APT29, Cozy Bear, and The Du
Publish At:2021-12-07 06:23 | Read:154 | Comments:0 | Tags:APT Breaking News Cyber warfare Malware Hacking hacking news

Nobelium APT targets French orgs, French ANSSI agency warns

The French cyber-security agency ANSSI said that the Russia-linked Nobelium APT group has been targeting French organizations since February 2021. The French national cybersecurity agency ANSSI (Agence Nationale de la Sécurité des Systèmes d’Information) revealed that the Russia-linked Nobelium APT group has been targeting French organizations sinc
Publish At:2021-12-06 18:45 | Read:211 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Cyberespionage hacki

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

North Korea-linked threat actors posed as Samsung recruiters in a spear-phishing campaign aimed at employees at South Korean security firms. North Korea-linked APT group posed as Samsung recruiters is a spear-phishing campaign that targeted South Korean security companies that sell anti-malware solutions, Google TAG researchers reported. According to
Publish At:2021-11-28 10:18 | Read:333 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Intelligence Malware

Iranian threat actors exploit MS MSHTML bug to steal Google and Instagram credentials

An Iranian threat actor is stealing Google and Instagram credentials of Farsi-speaking targets by exploiting a Microsoft MSHTML bug. Researchers from SafeBreach Labs spotted a new Iranian threat actor that is using an exploit for a Microsoft MSHTML Remote Code Execution (RCE) flaw in attacks aimed at Farsi-speaking victims. The exploit is used to install
Publish At:2021-11-25 10:18 | Read:381 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware CVE-2021-404

North Korea-linked TA406 cyberespionage group activity in 2021

North Korea-linked TA406 APT group has intensified its attacks in 2021, particularly credential harvesting campaigns. A report published by Proofpoint revealed that the North Korea-linked TA406 APT group (Kimsuky, Thallium, and Konni, Black Banshee, Velvet Chollima) has intensified its operations in 2021. The TA406 cyber espionage group was first&
Publish At:2021-11-19 13:00 | Read:420 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware hacking news

Mandiant links Ghostwriter operations to Belarus

Security researchers at the Mandiant Threat Intelligence team believe that Ghostwriter APT group is linked to the government of Belarus. Mandiant Threat Intelligence researchers believe that the Ghostwriter disinformation campaign (aka UNC1151) was linked to the government of Belarus. In August 2020, security experts from FireEye uncovered a disinforma
Publish At:2021-11-16 22:30 | Read:397 | Comments:0 | Tags:APT Breaking News Cyber warfare Intelligence Ghostwriter Hac

Taiwan Government faces 5 Million hacking attempts daily

Taiwan ‘s government agencies face around five million cyberattacks and probes every day, most of them from China. Around five million cyber attacks hit Taiwan’s government agencies every day, and most of the hacking attempts are originated from China. Cyber security department director Chien Hung-wei told parliament representatives that go
Publish At:2021-11-10 10:52 | Read:346 | Comments:0 | Tags:Breaking News Cyber warfare Intelligence hacking news inform

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Ukraine’s premier law enforcement and counterintelligence revealed the real identities of five FSB members behind the Gamaredon cyberespionage group. Ukraine’s premier law enforcement and counterintelligence disclosed the real identities of five alleged members of the Russia-linked APT group Gamaredon (aka Primitive Bear, Armageddon, Winterfl
Publish At:2021-11-05 13:00 | Read:427 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware Cyberespiona

Russia-linked Nobelium APT targets orgs in the global IT supply chain

Russia-linked Nobelium APT group has breached at least 14 managed service providers (MSPs) and cloud service providers since May 2021. The SolarWinds security breach was not isolated, Russia-linked Nobelium APT group has targeted140 managed service providers (MSPs) and cloud service providers and successfully breached 14 of them since May 2021. The NO
Publish At:2021-10-25 07:49 | Read:37 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking hacking news informa

China-linked LightBasin group accessed calling records from telcos worldwide

China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. A China-linked hacking group, tracked as LightBasin (aka UNC1945), hacked mobile telephone networks around the globe and used specialized tools to access calling records and text messages from telecommunicati
Publish At:2021-10-20 11:44 | Read:875 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Intelligence Malware

Symantec uncovered a previously unknown nation-state actor, named Harvester, that targeted telcos

Symantec spotted a previously unknown nation-state actor, tracked as Harvester, that is targeting telecommunication providers and IT firms in South Asia. Symantec spotted a previously unknown nation-state actor, tracked as Harvester, that is using a custom implant, dubbed Backdoor.Graphon, in attacks aimed at telecommunication providers, IT firms, and gov
Publish At:2021-10-19 07:48 | Read:1067 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware Asia backdoo

Iran-linked DEV-0343 APT target US and Israeli defense technology firms

DEV-0343: Iran-linked threat actors are targeting US and Israeli defense technology companies leveraging password spraying attacks. Researchers at Microsoft Threat Intelligence Center (MSTIC) and Microsoft Digital Security Unit (DSU) uncovered a malicious activity cluster, tracked as DEV-0343, that is targeting the Office 365 tenants of US and Israeli de
Publish At:2021-10-11 18:20 | Read:968 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking DEV-0343 APT hacking

58% of all nation-state attacks in the last year were launched by Russian nation-state actors

Microsoft revealed that Russia-linked cyberespionage groups are behind the majority of the nation-state cyber attacks on US government agencies. Microsoft revealed that most of the cyber attacks on US government agencies are orchestrated by Russia-linked cyberespionage groups. According to the IT giant, approximately 58% of all nation-state attacks betwe
Publish At:2021-10-08 18:20 | Read:651 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking

The Netherlands declares war on ransomware operations

The Dutch government will not tolerate ransomware attacks that could threaten national security, it will use intelligence or military services to curb them. The Dutch government announced that it will not tolerate cyberattacks that pose a risk to its national security and will employ intelligence or military services to counter them. Cyberespionage an
Publish At:2021-10-08 07:48 | Read:422 | Comments:0 | Tags:Breaking News Cyber Crime Cyber warfare Intelligence Securit

Operation GhostShell: MalKamak APT targets aerospace and telco firms

Operation GhostShell: Threat actors used ShellClient malware in cyberespionage campaigns aimed at companies in the aerospace and telecommunications sectors. Hackers use stealthy ShellClient malware on aerospace, telco firms Cybereason Nocturnus and Incident Response Teams discovered a new threat actor that is targeting organizations in the aerospace an
Publish At:2021-10-07 04:26 | Read:684 | Comments:0 | Tags:APT Cyber warfare Hacking Malware Cyberespionage hacking new

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3