Security News

Chinese Hackers Launch Covert Espionage Attacks on 24 Cambodian Organizations
2023-11-13 05:58

Cybersecurity researchers have discovered what they say is malicious cyber activity orchestrated by two prominent Chinese nation-state hacking groups targeting 24 Cambodian government organizations. "This activity is believed to be part of a long-term espionage campaign," Palo Alto Networks Unit 42 researchers said in a report last week.

Iranian Cyber Espionage Group Targets Financial and Government Sectors in Middle East
2023-11-01 11:22

A threat actor affiliated with Iran's Ministry of Intelligence and Security (MOIS) has been observed waging a sophisticated cyber espionage campaign targeting financial, government, military, and...

YoroTrooper: Researchers Warn of Kazakhstan's Stealthy Cyber Espionage Group
2023-10-26 04:25

A relatively new threat actor known as YoroTrooper is likely made of operators originating from Kazakhstan. The assessment, which comes from Cisco Talos, is based on their fluency in Kazakh and...

International Criminal Court systems breached for cyber espionage
2023-10-21 14:01

The International Criminal Court provided additional information about the cyberattack five weeks ago, saying that it was a targeted operation for espionage purposes. As an international tribunal, the International Criminal Court is seated in The Hague, Netherlands, and its attributions are to investigate, and to hold accountable individuals committing crimes of concern to the international community.

TetrisPhantom: Cyber Espionage via Secure USBs Targets APAC Governments
2023-10-18 09:11

Government entities in the Asia-Pacific (APAC) region are the target of a long-running cyber espionage campaign dubbed TetrisPhantom. "The attacker covertly spied on and harvested sensitive data...

Guyana Governmental Entity Hit by DinodasRAT in Cyber Espionage Attack
2023-10-05 10:39

A governmental entity in Guyana has been targeted as part of a cyber espionage campaign dubbed Operation Jacana. The activity, which was detected by ESET in February 2023, entailed a...

AWS stirs the MadPot – busting bot baddies and eastern espionage
2023-10-02 10:45

Interview AWS has unveiled MadPot, its previously secret threat-intelligence tool that one of the cloud giant's security execs tells us has thwarted Chinese and Russian spies - and millions of bots. The massive honeypot system has been around since 2010, and includes tens of thousands of threat sensors monitoring criminals' attempts to connect with AWS decoys.

China Accuses U.S. of Decade-Long Cyber Espionage Campaign Against Huawei Servers
2023-09-21 09:39

China's Ministry of State Security (MSS) has accused the U.S. of breaking into Huawei's servers, stealing critical data, and implanting backdoors since 2009, amid mounting geopolitical tensions...

New SprySOCKS Linux malware used in cyber espionage attacks
2023-09-18 14:05

A Chinese espionage-focused hacker tracked as 'Earth Lusca' was observed targeting government agencies in multiple countries, using a new Linux backdoor dubbed 'SprySOCKS.'. Trend Micro's analysis of the novel backdoor showed that it originates from the Trochilus open-source Windows malware, with many of its functions ported to work on Linux systems.

SapphireStealer Malware: A Gateway to Espionage and Ransomware Operations
2023-08-31 14:15

NET-based information stealer malware dubbed SapphireStealer is being used by multiple entities to enhance its capabilities and spawn their own bespoke variants. "Information-stealing malware like SapphireStealer can be used to obtain sensitive information, including corporate credentials, which are often resold to other threat actors who leverage the access for additional attacks, including operations related to espionage or ransomware/extortion," Cisco Talos researcher Edmund Brumaghin said in a report shared with The Hacker News.