APT

North Korea-linked ScarCruft APT adds Bluetooth Harvester to its arsenalNorth Korea-linked ScarCruft APT adds Bluetooth Harvester to its arsenal

North Korea-linked ScarCruft APT adds Bluetooth Harvester to its arsenal

The North Korea-linked APT group ScarCruft (aka APT37 and Group123) continues to expand its arsenal by adding a Bluetooth Harvester.…

6 years ago
DHS and FBI published a Malware Analysis Report on North Korea-linked tool ELECTRICFISHDHS and FBI published a Malware Analysis Report on North Korea-linked tool ELECTRICFISH

DHS and FBI published a Malware Analysis Report on North Korea-linked tool ELECTRICFISH

The U.S. Department of Homeland Security (DHS) and the FCI published a new joint report on ELECTRICFISH, a malware used…

6 years ago
LightNeuron, a Turla’s backdoor used to compromise exchange mail serversLightNeuron, a Turla’s backdoor used to compromise exchange mail servers

LightNeuron, a Turla’s backdoor used to compromise exchange mail servers

Russia-linked APT group Turla has been using a sophisticated backdoor, dubbed LightNeuron, to hijack Microsoft Exchange mail servers. Russia-linked APT…

6 years ago
APT34: Glimpse projectAPT34: Glimpse project

APT34: Glimpse project

The APT34 Glimpse project is maybe the most complete APT34 project known so far, the popular researcher Marco Ramilli analyzed it…

6 years ago
Amnesty International Hong Kong Office hit by state-sponsored attackAmnesty International Hong Kong Office hit by state-sponsored attack

Amnesty International Hong Kong Office hit by state-sponsored attack

The Hong Kong office of Amnesty International has been hit by a long-running cyberattack carried out by China-linked hackers. Amnesty…

6 years ago
The Russian Shadow in Eastern Europe: Gamaredon ‘s Ukrainian MOD CampaignThe Russian Shadow in Eastern Europe: Gamaredon ‘s Ukrainian MOD Campaign

The Russian Shadow in Eastern Europe: Gamaredon ‘s Ukrainian MOD Campaign

Security researchers at Yoroi-Cybaze ZLab uncovered a new campaign carried out by the Russian state-actor dubbed Gamaredon. Introduction Few days…

6 years ago
OilRig APT uses Karkoff malware along with DNSpionage in recent attacksOilRig APT uses Karkoff malware along with DNSpionage in recent attacks

OilRig APT uses Karkoff malware along with DNSpionage in recent attacks

Iran-linked OilRig cyberespionage group is using the reconnaissance malware Karkoff along with DNSpionage in recent campaigns.Iran-linked OilRig cyberespione group is…

6 years ago
Kaspersky speculates the involvement of ShadowPad attackers in Operation ShadowHammerKaspersky speculates the involvement of ShadowPad attackers in Operation ShadowHammer

Kaspersky speculates the involvement of ShadowPad attackers in Operation ShadowHammer

Experts at Kaspersky Lab linked the recent supply-chain attack targeted ASUS users to the "ShadowPad" threat actor and the CCleaner…

6 years ago
FireEye experts found source code for CARBANAK malware on VirusTotalFireEye experts found source code for CARBANAK malware on VirusTotal

FireEye experts found source code for CARBANAK malware on VirusTotal

Cybersecurity researchers from FireEye revealed that the Carbanak source code has been available on VirusTotal for two years, and none…

6 years ago
Iran-linked APT34: Analyzing the webmask projectIran-linked APT34: Analyzing the webmask project

Iran-linked APT34: Analyzing the webmask project

Security expert Marco Ramilli published the findings of a quick analysis of the webmask project standing behind the DNS attacks…

6 years ago
Show more Posts
Show previous Posts