Security News

Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle East
2024-09-05 16:19

Unnamed government entities in the Middle East and Malaysia are the target of a persistent cyber campaign orchestrated by a threat actor known as Tropic Trooper since June 2023. "Sighting this...

New Cross-Platform Malware KTLVdoor Discovered in Attack on Chinese Trading Firm
2024-09-05 05:03

The Chinese-speaking threat actor known as Earth Lusca has been observed using a new backdoor dubbed KTLVdoor as part of a cyber attack targeting an unnamed trading company based in China. The...

New Cyberattack Targets Chinese-Speaking Businesses with Cobalt Strike Payloads
2024-08-30 06:17

Chinese-speaking users are the target of a "highly organized and sophisticated attack" campaign that is likely leveraging phishing emails to infect Windows systems with Cobalt Strike payloads....

Chinese broadband satellites may be Beijing's flying spying censors, think tank warns
2024-08-28 01:58

Ground stations are the perfect place for the Great Firewall to block things China finds unpleasant The multiple constellations of broadband-beaming satellites planned by Chinese companies could...

macOS Version of HZ RAT Backdoor Targets Chinese Messaging App Users
2024-08-27 16:08

Users of Chinese instant messaging apps like DingTalk and WeChat are the target of an Apple macOS version of a backdoor named HZ RAT. The artifacts "almost exactly replicate the functionality of...

Chinese Volt Typhoon Exploits Versa Director Flaw, Targets U.S. and Global IT Sectors
2024-08-27 14:00

The China-nexus cyber espionage group tracked as Volt Typhoon has been attributed with moderate confidence to the zero-day exploitation of a recently disclosed high-severity security flaw...

Chinese Volt Typhoon hackers exploited Versa zero-day to breach ISPs, MSPs
2024-08-27 14:00

The Chinese state-backed hacking group Volt Typhoon is behind attacks that exploited a zero-day flaw in Versa Director to upload a custom webshell to steal credentials and breach corporate networks. [...]

Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control
2024-08-22 16:13

Details have emerged about a China-nexus threat group's exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-day to seize control of the appliance and evade...

Multi-Stage ValleyRAT Targets Chinese Users with Advanced Tactics
2024-08-16 11:40

Chinese-speaking users are the target of an ongoing campaign that distributes malware known as ValleyRAT. "ValleyRAT is a multi-stage malware that utilizes diverse techniques to monitor and control its victims and deploy arbitrary plugins to cause further damage," Fortinet FortiGuard Labs researchers Eduardo Altares and Joie Salvio said. The attack sequence is a multi-stage process that starts with a first-stage loader that impersonates legitimate applications like Microsoft Office to make them appear harmless.

Chinese hacking groups target Russian government, IT firms
2024-08-11 16:16

A series of targeted cyberattacks that started at the end of July 2024, targeting dozens of systems used in Russian government organizations and IT companies, are linked to Chinese hackers of the...