State-sponsored cyberespionage campaigns continue targeting journalists and media

2022-07-14 10:00

Media organizations and journalists in the last years have been increasingly targeted by state-sponsored advanced persistent threat actors with a clear purpose: Obtain access to their sensitive information, spy their activities or even identify their sources.

Zirconium, a threat actor also known as TA412, has been targeting American journalists since 2021.

In August 2021, the threat actor once again launched an attack campaign, this time targeting journalists with cybersecurity, surveillance and privacy issues focusing on China.

TA482 is a threat actor targeting the social media accounts of American journalists and media organizations.

TortoiseShell, also known as TA456, is another actor from Iran who targets media organizations via other attack campaigns.

Between September 2021 and March 2022, the threat actor ran attack campaigns approximately every two to three weeks, targeting both generic and individual email addresses at these media organizations.

News URL

https://www.techrepublic.com/article/cyberespionage-campaigns-targeting-journalists/

#cyberespionage #statesponsored