Researchers Uncover New Metador APT Targeting Telcos, ISPs, and Universities
A previously undocumented threat actor of unknown origin has been linked to attacks targeting telecom, internet service providers, and …
APT
Feds Sound Alarm on Rising OT/ICS Threats From APT Groups
NSA and CISA release guidance on protecting against cybersecurity threats to operational technology and industrial control …
SparklingGoblin APT adds a new Linux variant of SideWalk implant to its arsenal
China-linked SparklingGoblin APT was spotted using a Linux variant of a backdoor known as SideWalk against a Hong Kong university. …
SparklingGoblin APT Hackers Using New Linux Variant of SideWalk Backdoor
A Linux variant of a backdoor known as SideWalk was used to target a Hong Kong university in February 2021, underscoring the cross-platform …
Iran-Linked APT Cozies Up to ‘Enemies’ in Trust-Based Spy Game
APT42 is posing as a friend to people considered threats to the government, using a raft of different tools to steal relevant info and …
Kimsuky’s GoldDragon cluster and its C2 operations
Kimsuky (also known as Thallium, Black Banshee and Velvet Chollima) is a prolific and active threat actor primarily targeting Korea-related …
Charming Kitten APT Wields New Scraper to Steal Email Inboxes
Google researchers say the nation-state hacking team is now employing a data-theft tool that targets Gmail, Yahoo!, and Microsoft Outlook …
Russian APT Group Attack Microsoft 365 users Abusing Azure Services
There has been a surge in cyberespionage attacks levied by Cozy Bear (aka APT29 and Nobelium), a Russian cyberespionage group backed by the …
Russian APT Group Targeting Microsoft 365 users Abusing Azure Services
There has been a surge in cyberespionage attacks levied by Cozy Bear (aka APT29 and Nobelium), a Russian cyberespionage group backed by the …
Mac Attack: North Korea’s Lazarus APT Targets Apple’s M1 Chip
Lazarus continues to expand an aggressive, ongoing spy campaign, using fake Coinbase job openings to lure in …
China-Backed RedAlpha APT Builds Sprawling Cyber-Espionage Infrastructure
The state-sponsored group particularly targets organizations working on behalf of the Uyghurs, Tibet, and Taiwan, looking to gather intel …
Microsoft Disrupted Russia-Linked APT SEABORGIUM Targeting NATO Countries
Microsoft Threat Intelligence Center (MSTIC) has noticed and taken measures to interrupt campaigns launched by SEABORGIUM, a Russia-based …
Windows, Linux and macOS Users Targeted by Chinese Iron Tiger APT Group
Chinese Espionage Group called Iron Tiger (aka LuckyMouse) is targeting Windows, Linux, and macOS Users with trojanized MiMi Chat app …
IT threat evolution Q2 2022
ToddyCat APT and WinDealer man-on-the-side attack, Spring4Shell and other vulnerabilities, ransomware trends and our in-depth analysis of …