APT

China-linked Salt Typhoon APT compromised more US telecoms than previously knownChina-linked Salt Typhoon APT compromised more US telecoms than previously known

China-linked Salt Typhoon APT compromised more US telecoms than previously known

China-linked Salt Typhoon group that breached multiple US telecoms compromised more firms than previously known, WSJ says. The China-linked cyberespionage…

7 months ago
US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APTUS Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

The U.S. Treasury Department sanctioned Chinese cybersecurity firm Integrity Tech for its involvement in attacks attributed to the Flax Typhoon…

7 months ago
Lumen reports that it has locked out the Salt Typhoon group from its networkLumen reports that it has locked out the Salt Typhoon group from its network

Lumen reports that it has locked out the Salt Typhoon group from its network

Lumen reports that the Salt Typhoon hacking group, which targeted at least nine U.S. telecom firms, was locked out of…

7 months ago
China-linked APT Salt Typhoon breached a ninth U.S. telecommunications firmChina-linked APT Salt Typhoon breached a ninth U.S. telecommunications firm

China-linked APT Salt Typhoon breached a ninth U.S. telecommunications firm

A White House official confirmed that China-linked threat actor Salt Typhoon breached a ninth U.S. telecommunications company. A White House…

7 months ago
North Korea actors use OtterCookie malware in Contagious Interview campaignNorth Korea actors use OtterCookie malware in Contagious Interview campaign

North Korea actors use OtterCookie malware in Contagious Interview campaign

North Korea-linked threat actors are using the OtterCookie backdoor to target software developers with fake job offers. North Korea-linked threat…

7 months ago
BellaCPP, Charming Kitten’s BellaCiao variant written in C++BellaCPP, Charming Kitten’s BellaCiao variant written in C++

BellaCPP, Charming Kitten’s BellaCiao variant written in C++

Iran-linked APT group Charming Kitten has been observed using a new variant of the BellaCiao malware dubbed BellaCPP, Kaspersky researchers…

7 months ago
DMM Bitcoin $308M Bitcoin heist linked to North KoreaDMM Bitcoin $308M Bitcoin heist linked to North Korea

DMM Bitcoin $308M Bitcoin heist linked to North Korea

Japanese and U.S. authorities attributed the theft of $308 million cryptocurrency from DMM Bitcoin to North Korean cyber actors. Japanese…

7 months ago
Lazarus APT targeted employees at an unnamed nuclear-related organizationLazarus APT targeted employees at an unnamed nuclear-related organization

Lazarus APT targeted employees at an unnamed nuclear-related organization

North Korea-linked Lazarus Group targeted employees of an unnamed nuclear-related organization in January 2024. Kaspersky researchers observed the North Korea-linked…

7 months ago
CERT-UA: Russia-linked UAC-0125 abuses Cloudflare Workers to target Ukrainian armyCERT-UA: Russia-linked UAC-0125 abuses Cloudflare Workers to target Ukrainian army

CERT-UA: Russia-linked UAC-0125 abuses Cloudflare Workers to target Ukrainian army

The Computer Emergency Response Team of Ukraine (CERT-UA) warns that the threat actor UAC-0125 abuses Cloudflare Workers services to target…

7 months ago
Russia-linked APT29 group used red team tools in rogue RDP attacks<gwmw style="display: none; background-color: transparent;"></gwmw>Russia-linked APT29 group used red team tools in rogue RDP attacks<gwmw style="display: none; background-color: transparent;"></gwmw>

Russia-linked APT29 group used red team tools in rogue RDP attacks<gwmw style="display: none; background-color: transparent;"></gwmw>

Russia-linked APT29 group uses malicious RDP configuration files, adapting red teaming methods for cyberattacks to compromise systems. In October 2024,…

7 months ago