Tag: APT
-
Sophisticated Android Spyware Attack Spreads via Google Play
A sophisticated, ongoing espionage campaign aimed at Android users in Asia is likely the work of the OceanLotus advanced persistent threat …
-
Hiding in plain sight: PhantomLance walks into a market
In July 2019, a sophisticated backdoor trojan in Google Play was reported. We conducted an inquiry of our own, discovering a long-term …
-
U.S. Universities Hit With ‘Adult Dating’ Spear-Phishing Attack
More than 150,000 emails spreading the Hupigon RAT that use adult dating as a lure have been uncovered, with almost half being sent to U.S. …
-
Shadow Broker leaked NSA files point to unknown APT group
A security researcher claims to have unearthed a previously-unknown APT group after reading over some of the dumped files. The Shadow …
-
Security researcher identifies new APT group mentioned in 2017 Shadow Brokers leak
Three years and eight days ago, on April 14, 2017, a mysterious group of hackers known as the Shadow Brokers published a collection of …
-
Vietnamese Threat Actors APT32 Targeting Wuhan Government and Chinese Ministry of Emergency Management in Latest Example of COVID-19
APT32 carried out intrusion campaigns against Chinese targets that Mandiant Threat Intelligence believes was designed to collect …
-
5 APT Hacker Groups Attack Linux Servers, Windows and Android Platform Using RAT’s For Past 10 Years
Researchers uncovered a new cross-platform attack from 5 different APT groups that work for the Chinese Government targets the Linux …
-
BlackBerry Report: Decade of the RATs – Novel APT Attacks Targeting Linux, Windows and Android
BlackBerry researchers have released a new report that examines how five related APT groups operating in the interest of the Chinese …
-
Serious Exchange Flaw Still Plagues 350K Servers
Over 80 percent of exposed Exchange servers are still vulnerable to a severe vulnerability – nearly two months after the flaw was …
-
APT Hackers Abusing Microsoft Crypto API to Drop Backdoor on Windows Using Weaponized Shellcode
Researchers discovered a new wave of malware campaign that believed to be launched by APT hackers group using legitimate NSIS software to …
-
YARA webinar follow up
If you read my previous blogpost, “Hunting APTs with YARA” then you probably know about the webinar we’ve done on March 31, 2020, …
-
APT Hackers Attack Indian Financial Institutions To Exfiltrate the Sensitive Data With Crimson RAT
Researchers uncovered a new wave of an APT campaign that target the Indian financial institutions with the powerful Crimson RAT to …
●●●