HackDig : Dig high-quality web security articles

Reuters: Russia-linked APT behind Brexit leak website

Russia-linked threat actors are behind a new website that published leaked emails from leading proponents of Britain’s exit from the EU, the Reuters reported. According to a Google cybersecurity official and the former head of UK foreign intelligence, the “Very English Coop d’Etat” website was set up to publish private emails from
Publish At:2022-05-28 10:31 | Read:132 | Comments:0 | Tags:Breaking News Data Breach Hacking Intelligence APT Cold Rive

Russia-linked Turla APT targets Austria, Estonia, and NATO platform

Russia-linked APT group Turla was observed targeting the Austrian Economic Chamber, a NATO eLearning platform, and the Baltic Defense College. Researchers from SEKOIA.IO Threat & Detection Research (TDR) team have uncovered a reconnaissance and espionage campaign conducted by Russia-linked Turla APT aimed at the Baltic Defense College,
Publish At:2022-05-24 02:35 | Read:253 | Comments:0 | Tags:APT Hacking Intelligence Cyberespionage hacking news IT Info

Russia-linked Fronton botnet could run disinformation campaigns

Researchers warn that the Fronton botnet was used by Russia-linked threat actors for coordinated disinformation campaigns. Fronton is a distributed denial-of-service (DDoS) botnet that was used by Russia-linked threat actors for coordinated disinformation campaigns. In March 2020, the collective of hacktivists called “Digital Revolution” claimed to hav
Publish At:2022-05-23 14:29 | Read:196 | Comments:0 | Tags:Breaking News Cyber warfare Hacking Intelligence Internet of

Cytrox’s Predator spyware used zero-day exploits in 3 campaigns

Google’s Threat Analysis Group (TAG) uncovered campaigns targeting Android users with five zero-day vulnerabilities. Google’s Threat Analysis Group (TAG) researchers discovered three campaigns, between August and October 2021, targeting Android users with five zero-day vulnerabilities. More TAG research from @_clem1 & @0xbadcafe1Campa
Publish At:2022-05-23 06:33 | Read:176 | Comments:0 | Tags:APT Breaking News Hacking Intelligence Malware Android Cytro

Threat actors target the infoSec community with fake PoC exploits

Researchers uncovered a malware campaign targeting the infoSec community with fake Proof Of Concept to deliver a Cobalt Strike beacon. Researchers from threat intelligence firm Cyble uncovered a malware campaign targeting the infoSec community. The expert discovered a post where a researcher were sharing a fake Proof of Concept (POC) exploit cod
Publish At:2022-05-23 03:11 | Read:235 | Comments:0 | Tags:Breaking News Hacking Intelligence hacking news information

Russia-linked Sandworm continues to conduct attacks against Ukraine

Security researchers from ESET reported that the Russia-linked APT group Sandworm continues to target Ukraine. Security experts from ESET reported that the Russia-linked cyberespionage group Sandworm continues to launch cyber attacks against entities in Ukraine. Sandworm (aka BlackEnergy and TeleBots) has been active since 2000, it operates under the
Publish At:2022-05-21 10:31 | Read:203 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware hacking news

China-linked Space Pirates APT targets the Russian aerospace industry

A new China-linked cyberespionage group known as ‘Space Pirates’ is targeting enterprises in the Russian aerospace industry. A previously unknown Chinese cyberespionage group, tracked as ‘Space Pirates’, targets enterprises in the Russian aerospace industry with spear-phishing attacks. The group has been active since at least 20
Publish At:2022-05-19 10:31 | Read:219 | Comments:0 | Tags:APT Breaking News Hacking Intelligence Malware China hacking

A custom PowerShell RAT uses to target German users using Ukraine crisis as bait

Researchers spotted a threat actor using a custom PowerShell RAT targeting German users to gain intelligence on the Ukraine crisis. Malwarebytes experts uncovered a campaign that targets German users with custom PowerShell RAT targeting. The threat actors attempt to trick victims into opening weaponized documents by using the current situation in Ukraine
Publish At:2022-05-17 02:35 | Read:230 | Comments:0 | Tags:Breaking News Intelligence Malware information security news

Iran-linked COBALT MIRAGE group uses ransomware in its operations

Iranian group used Bitlocker and DiskCryptor in a series of attacks targeting organizations in Israel, the US, Europe, and Australia. Researchers at Secureworks Counter Threat Unit (CTU) are investigating a series of attacks conducted by the Iran-linked COBALT MIRAGE APT group. The threat actors have been active since at least June 2020 and are linked to
Publish At:2022-05-13 03:11 | Read:385 | Comments:0 | Tags:APT Breaking News Hacking Malware COBALT MIRAGE hacking news

Experts uncovered a new wave of attacks conducted by Mustang Panda

China-linked Mustang Panda APT group targets entities in Asia, the European Union, Russia, and the US in a new wave of attacks. In February 2022, Cisco Talos researchers started observing China-linked cyberespionage group Mustang Panda conducting phishing attacks against European entities, including Russian organizations. The attacks were also r
Publish At:2022-05-09 06:26 | Read:283 | Comments:0 | Tags:APT Breaking News Hacking Intelligence China Cybersecurity c

Conti ransomware claims to have hacked Peru MOF – Dirección General de Inteligencia (DIGIMIN)

Conti Ransomware gang claims to have hacked the Peru MOF – Dirección General de Inteligencia (DIGIMIN) and stolen 9.41 GB. The Conti ransomware gang added the Peru MOF – Dirección General de Inteligencia (DIGIMIN) to the list of its victims on its Tor leak site. The National Directorate of Intelligence is the premier intelligence agency in Per
Publish At:2022-05-08 18:14 | Read:388 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Malware Conti ransomwa

China-linked Winnti APT steals intellectual property from companies worldwide

A sophisticated cyberespionage campaign, dubbed Operation CuckooBees, conducted by the China-linked Winnti group remained undetected since at least 2019. Researchers from Cybereason uncovered a sophisticated cyberespionage campaign, dubbed Operation CuckooBees, aimed at stealing intellectual property from the victims. The campaign flew under the radar
Publish At:2022-05-04 18:14 | Read:499 | Comments:0 | Tags:APT Hacking Intelligence Malware Security China Cybersecurit

Experts linked multiple ransomware strains North Korea-backed APT38 group

Researchers from Trellix linked multiple ransomware strains to the North Korea-backed APT38 group. The ransomware was employed in attacks on financial institutions, experts estimated that APT38 (Unit 180 of North Korea’s cyber-army Bureau 121) has stolen at hundreds of million dollars from banks worldwide. APT38 appears to be a North Korea-linked
Publish At:2022-05-04 10:22 | Read:317 | Comments:0 | Tags:APT Breaking News Hacking Intelligence Malware Security APT3

China-linked APT Curious Gorge targeted Russian govt agencies

China-linked Curious Gorge APT is targeting Russian government agencies, Google Threat Analysis Group (TAG) warns. Google Threat Analysis Group (TAG) reported that an APT group linked to China’s People’s Liberation Army Strategic Support Force (PLA SSF), tracked as Curious Gorge, is targeting Russian government agencies. The Google TAG team
Publish At:2022-05-03 20:15 | Read:387 | Comments:0 | Tags:APT Breaking News Intelligence China Curious Gorge Hacking h

China-linked Moshen Dragon abuses security software to sideload malware

A China-linked APT group, tracked as Moshen Dragon, is exploiting antivirus products to target the telecom sector in Asia. A China-linked APT group, tracked as Moshen Dragon, has been observed targeting the telecommunication sector in Central Asia with ShadowPad and PlugX malware, SentinelOne warns. Both PlugX and ShadowPad malware are very common amon
Publish At:2022-05-03 07:00 | Read:376 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Intelligence China h

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3