Researchers Uncover Powerful Backdoor and Custom Implant in Year-Long Cyber Campaign
By:
May 15, 2023Ravie LakshmananCyber Threat / Malware
Government, aviation, education, and telecom sectors located in South and Southeast Asia have come under the radar of a new hacking group...
Why Honeytokens Are the Future of Intrusion Detection
By:
A few weeks ago, the 32nd edition of RSA, one of the world's largest cybersecurity conferences, wrapped up in San Francisco. Among the highlights, Kevin Mandia, CEO of...
U.S. Government Neutralizes Russia’s Most Sophisticated Snake Cyber Espionage Tool
By:
The U.S. government on Tuesday announced the court-authorized disruption of a global network compromised by an advanced malware strain known as Snake wielded by Russia's Federal Security Service...
Sophisticated DownEx Malware Campaign Targeting Central Asian Governments
By:
May 10, 2023Ravie LakshmananMalware / Cyber Attack
Government organizations in Central Asia are the target of a sophisticated espionage campaign that leverages a previously undocumented strain of malware dubbed...
Western Digital Confirms Customer Data Stolen by Hackers in March Breach
By:
May 08, 2023Ravie LakshmananData Breach / Ransomware
Digital storage giant Western Digital confirmed that an "unauthorized third party" gained access to its systems and stole personal information belonging to...
MSI Data Breach: Private Code Signing Keys Leaked on the Dark Web
By:
May 08, 2023Ravie LakshmananData Breach / Software Security
The threat actors behind the ransomware attack on Taiwanese PC maker MSI last month have leaked the company's private code signing...
Meta Uncovers Massive Social Media Cyber Espionage Operations Across South Asia
By:
Three different threat actors leveraged hundreds of elaborate fictitious personas on Facebook and Instagram to target individuals located in South Asia as part of disparate attacks.
"Each of these...
Tonto Team Uses Anti-Malware File to Launch Attacks on South Korean Institutions
By:
Apr 28, 2023Ravie LakshmananMalware / Cyber Threat
South Korean education, construction, diplomatic, and political institutions are at the receiving end of new attacks perpetrated by a China-aligned threat actor...
Paperbug Attack: New Politically-Motivated Surveillance Campaign in Tajikistan
By:
A little-known Russian-speaking cyber-espionage group has been linked to a new politically-motivated surveillance campaign targeting high-ranking government officials, telecom services, and public service infrastructures in Tajikistan.
The intrusion set,...
Kubernetes RBAC Exploited in Large-Scale Campaign for Cryptocurrency Mining
By:
Apr 21, 2023Ravie LakshmananKubernetes / Cryptocurrency
A large-scale attack campaign discovered in the wild has been exploiting Kubernetes (K8s) Role-Based Access Control (RBAC) to create backdoors and run cryptocurrency...