The Hacker News
Indian Hack-for-Hire Group Targeted U.S., China, and More for Over 10 Years
Indian Hack-for-Hire Group targeted U.S., China, Pakistan, and more for over a decade.
DarkReading
Shadowy Hack-for-Hire Group Behind Sprawling Web of Global Cyberattacks
For several years operators at New Delhi-based Appin hacked into, spied on, and stole data from targets around the world for clients that included private investigators, government agencies, law enforcement, and others.
The Record
Russian analysts point finger at China, North Korea over cyber activity
Despite the countries' warm relationship, Russia is being targeted by North Korean and Chinese state hacking groups, a cybersecurity firm connected to Rostelecom claims.
The Hacker News
Pro-Hamas Hacktivists Targeting Israeli Entities with Wiper Malware
Pro-Hamas hacktivist group using a new Linux-based malware, BiBi-Linux Wiper, to target Israeli entities amid ongoing conflict.
The Record
US, Japan say ‘BlackTech’ Chinese gov’t hackers exploiting routers during attacks
A sophisticated hacking group tied to the government of China is exploiting routers in attacks on a variety of organizations, cybersecurity agencies in the United States and Japan warned.
The Hacker News
Mysterious 'Sandman' Threat Actor Targets Telecom Providers Across Three Continents
Sandman, a new cyber threat actor, is targeting telecom providers across continents. Read more about this cyber espionage campai
The Hacker News
China-Linked Bronze Starlight Group Targeting Gambling Sector with Cobalt Strike Beacons
Espionage Disguised as Ransomware? Ongoing cyber attacks traced back to China target Southeast Asian gambling.
The Hacker News
North Korean Hackers Targets Russian Missile Engineering Firm
Two North Korean groups launch a targeted cyber operation on NPO Mashinostroyeniya
DarkReading
North Korean Attackers Targeted Crypto Companies in JumpCloud Breach
Analysts continue piecing together who breached JumpCloud, why, and what else they've managed to pull off.
The Hacker News
North Korean State-Sponsored Hackers Suspected in JumpCloud Supply Chain Attack
North Korean state-sponsored groups suspected in the recent supply chain attack on JumpCloud! They used the breach to target cryptocurrency firms.
Bleeping Computer
JumpCloud breach traced back to North Korean state hackers
US-based enterprise software company JumpCloud was breached by North Korean Lazarus Group hackers, according to security researchers at SentinelOne and CrowdStrike.
DarkReading
'Operation Magalenha' Attacks Gives Window Into Brazil's Cybercrime Ecosystem
A campaign against customers of Portuguese banks uses a capable financial malware strain dubbed PeepingTitle, written in the Delphi programming language.
The Hacker News
Alert: Brazilian Hackers Targeting Users of Over 30 Portuguese Banks
Portuguese bank users beware! Brazilian hackers are on the prowl, targeting over 30 financial institutions.
CyberScoop
Brazilian hackers target Portuguese financial institutions
The sophisticated hacking effort is the latest in a long line of financially motivated malware campaigns emanating from Brazil.
The Hacker News
North Korean Kimsuky Hackers Strike Again with Advanced Reconnaissance Malware
Kimsuky, the North Korean APT group, is back in action! They're using a new custom malware called RandomQuery to conduct reconnaissance.
DarkReading
Attackers Target macOS With 'Geacon' Cobalt Strike Tool
Threat actors seen using Go-language implementation of the red-teaming tool on Intel and Apple silicon-based macOS systems.
DarkReading
North Korean APT Uses Malicious Microsoft OneDrive Links to Spread New Malware
ReconShark, aimed at gaining initial access to targeted systems, is a component of previous malware used by the Kimsuky group.
Infosecurity News
North Korean APT Kimsuky Launches Global Spear-Phishing Campaign
ReconShark is sent via emails containing OneDrive links leading to documents with malicious macros
The Hacker News
N. Korean Kimsuky Hackers Using New Recon Tool ReconShark in Latest Cyberattacks
North Korean hackers Kimsuky using new ReconShark reconnaissance tool to target individuals via spear-phishing.
Bleeping Computer
Kimsuky hackers use new recon tool to find security gaps
The North Korean Kimsuky hacking group has been observed employing a new version of its reconnaissance malware, now called 'ReconShark,' in a cyberespionage campaign with a global reach.
Infosecurity News
Pro-Russian Winter Vivern APT Targets Governments and Telecom Firm
SentinelOne shared details about the new campaign in an advisory published on Thursday
DarkReading
Low-Budget 'Winter Vivern' APT Awakens After 2-Year Hibernation
The "underreported" APT has returned to focus after attacks promoting Russian and Belarusian government interests and going after targets with humor, zest, and scrappiness.
The Hacker News
Winter Vivern APT Group Targeting Indian, Lithuanian, Slovakian, and Vatican Officials
Winter Vivern, an advanced persistent threat, has targeted government officials in India, Lithuania, Slovakia, and the Vatican.
The Hacker News
FormBook Malware Spreads via Malvertising Using MalVirt Loader to Evade Detection
Researchers have uncovered a malvertising campaign that distributes virtualized . NET MalVirt loaders to evade detection and infect victims' computers
Ars Technica
Until further notice, think twice before using Google to download software
Over the past month, Google has been outgunned by malvertisers with new tricks.
Infosecurity News
Pro-Russian Hacktivist Group Targets Czech Presidential Election
The group used Telegram channels, a DDoS payment program, a multi-OS supported toolkit and GitHub
CyberScoop
GitHub disables pro-Russian hacktivist DDoS pages
NoName057 used the software development platform to carry out DDoS attacks on targets in a variety of NATO nations.
Infosecurity News
Cyber Mercenary Group Void Balaur Continues Hack-For-Hire Campaigns
Void Balaur campaigns in 2022 targeted various industries across the US, Russia and Ukraine
The Hacker News
Void Balaur Hackers-for-Hire Group Now Targeting Russian Businesses and Politics Entities
Void Balaur hacker-for-hire group has shifted its focus to target Russian businesses and political entities.
Infosecurity News
#BHUSA: Russia's Wiper Attacks Against Ukraine Detailed
According to researchers, Russia is rolling out a growing list of wiper attacks against Ukraine
DarkReading
Russia-Ukraine Conflict Holds Cyberwar Lessons
Initial attacks used damaging wiper malware and targeted infrastructure, but the most enduring impacts will likely be from disinformation, researchers say. At Black Hat USA, SentinelOne's Juan Andres Guerrero-Saade and Tom Hegel will discuss.
SecurityWeek
Black Hat 2022: Ten Presentations Worth Your Time and Attention
SecurityWeek editors have combed the Black Hat USA 2022 agenda carefully and identified the top 10 sessions that will be making news headlines all week.
CyberScoop
Global network of fake news sites push Chinese propaganda, researchers find
More than 70 bogus sites in North America, Europe, the Middle East and Asia are part of an information operation pushing pro-Beijing messages.
Ars Technica
Police linked to hacking campaign to frame Indian activists
Details connect police in India to a plot to plant evidence on victims' computers.
Ars Technica
An actively exploited Microsoft 0-day flaw still doesn’t have a patch
Microsoft downplays severity of vulnerability in all supported versions of Windows.
CyberScoop
Russian, Chinese, Belarusian hackers increasingly using Ukraine-themed lures in attacks, Google observes
The Threat Analysis Group report sheds light on international efforts to leverage the war in hacking campaigns.
The Hacker News
Another Chinese Hacking Group Spotted Targeting Ukraine Amid Russia Invasion
Another Chinese hacker group has entered the fray of the Ukraine conflict and is attacking victims with the HeaderTip backdoor malware.
ThreatPost
Cybercrooks Frame Targets by Planting Incriminating Evidence
The ‘ModifiedElephant’ threat actors are technically unimpressive, but they’ve evaded detection for a decade, hacking human rights advocates' systems with dusty old keyloggers and off-the-shelf RATs.
The Hacker News
Hackers Planted Fake Digital Evidence on Devices of Indian Activists and Lawyers
Researchers uncover cyberattacks placing fake evidence on devices of human rights activists, human rights defenders, academics, and lawyers in India.