APT

APT28 and Upcoming Elections: evidence of possible interference (Part II)APT28 and Upcoming Elections: evidence of possible interference (Part II)

APT28 and Upcoming Elections: evidence of possible interference (Part II)

In mid-March, a suspicious Office document referencing the Ukraine elections appeared in the wild, is it related to APT28 and upcoming…

6 years ago
CVE-2019-0803 Windows flaw exploited to deliver PowerShell BackdoorCVE-2019-0803 Windows flaw exploited to deliver PowerShell Backdoor

CVE-2019-0803 Windows flaw exploited to deliver PowerShell Backdoor

A recently fixed local privilege escalation flaw in windows (CVE-2019-0803) had been exploited by bad actors to deliver PowerShell Backdoor.…

6 years ago
APT28 and Upcoming Elections: evidence of possible interferenceAPT28 and Upcoming Elections: evidence of possible interference

APT28 and Upcoming Elections: evidence of possible interference

In mid-March, a suspicious Office document referencing the Ukraine elections appeared in the wild, is it related to APT28 and…

6 years ago
FBI/DHS MAR report details HOPLIGHT Trojan used by Hidden Cobra APTFBI/DHS MAR report details HOPLIGHT Trojan used by Hidden Cobra APT

FBI/DHS MAR report details HOPLIGHT Trojan used by Hidden Cobra APT

According to a joint report published by the United States Department of Homeland Security (DHS) and Federal Bureau of Investigation…

6 years ago
Sophisticated TajMahal APT Framework remained under the radar for 5 yearsSophisticated TajMahal APT Framework remained under the radar for 5 years

Sophisticated TajMahal APT Framework remained under the radar for 5 years

Cybersecurity experts at Kaspersky Lab uncovered a highly sophisticated spyware framework dubbed TajMahal that was involved in cyberespionage campaign for…

6 years ago
FIN6 group starts using LockerGoga and Ryuk RansomwareFIN6 group starts using LockerGoga and Ryuk Ransomware

FIN6 group starts using LockerGoga and Ryuk Ransomware

Security experts at FireEye observed the financially motivated group FIN6 adding the LockerGoga and Ryuk ransomware to its arsenal. According…

6 years ago
The German chemicals giant Bayer hit by a cyber attackThe German chemicals giant Bayer hit by a cyber attack

The German chemicals giant Bayer hit by a cyber attack

The German chemicals giant Bayer confirmed that of a cyber attack, it confirmed the incident but clarified that no data…

6 years ago
OceanLotus APT group leverages a steganography-based loader to deliver backdoorsOceanLotus APT group leverages a steganography-based loader to deliver backdoors

OceanLotus APT group leverages a steganography-based loader to deliver backdoors

The OceanLotus APT group, also known as APT32 or Cobalt Kitty, leverages a steganography-based loader to deliver backdoors on compromised…

6 years ago
Security Affairs newsletter Round 207 – News of the weekSecurity Affairs newsletter Round 207 – News of the week

Security Affairs newsletter Round 207 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition…

6 years ago
Microsoft took control of 99 domains used by Iran-linked Phosphorus APTMicrosoft took control of 99 domains used by Iran-linked Phosphorus APT

Microsoft took control of 99 domains used by Iran-linked Phosphorus APT

Microsoft this week announced that it had taken control of 99 domains used by an Iran-linked APT group tracked by…

6 years ago