Microsoft looks to expose espionage groups targeting Us Politics and NGO’s
Written by Sean Lyngaas
Foreign espionage groups, including those bent on undermining the U.S. political process, have targeted non-government organizations and think tanks more than any other sector in a bid to gather intelligence,...
How the Trickbot C2 uses rDNS to disguise as a legitimate Australian government service
By Gabor Szathmari
One interesting offshoot of researching .gov.au websites running outside Australia was an odd service running from Russia. How the Service NSW – a website offering government services online – ended...
FBI Indictment Puts Chinese Government Linked Hackers APT41 in The Spotlight.
Seven men have been charged in the U.S. in relation to attacks by China-linked espionage operation which Symantec monitors as two distinct groups – Blackfly and Grayfly
By: The Threat...
An In Depth Look At APT DeathStalker
By Ivan Kwiatkowski, Pierre Delcher, Maher Yamout on August 24, 2020. 10:00 am
State-sponsored threat actors and sophisticated attacks are often in the spotlight. Indeed, their innovative techniques, advanced malware platforms and 0-day exploit chains...
Ransomware Group Darkside Demands 1 Million Dollar Ransoms
By Lawrence Abrams
A new ransomware operation named DarkSide began attacking organizations earlier this month with customized attacks that have already earned them million-dollar payouts.
Starting around August 10th, 2020, the new ransomware...
IcedID Malware Updates new techniques To Avoid Detection
by Paul Kimayong
In our previous blog about IcedID, we explored some of the changes in the malware and how it tries to evade detection. We also detailed how threat actors took advantage...
Windows Vulnerability Allows Malware To Run With Admin Rights
Security researchers have discovered a workaround for a Microsoft Print Services vulnerability patch ( CVE-2020-1048 ) that allows attackers to execute malicious code with elevated privileges.
The vulnerability was discovered by experts Peleg Hadar and Tomer...
WastedLocker Ransomware Using Hacked Websites to Spread via Fake Software Updates
Dozens of US news sites hacked in WastedLocker ransomware attacks
By Sergiu Gatlan
Image: C Drying
The Evil Corp gang hacked into dozens of US newspaper websites owned by the same company to infect...
The Evil Corp Groups New Ransomware WastedLocker
New Ransomware Developed By Evil Corp Attempts To Bypass Crowdstrike and is encrypted by a private crypter.
Stefano Antenucci
June 23, 2020 22 Minutes
Authors: Nikolaos Pantazopoulos, Stefano Antenucci (@Antelox) and Michael Sandee
1. Introduction
WastedLocker is a new ransomware...
North Koreas Built A Silent 7000 Strong Cyber Army
ELLEN IOANES, BUSINESS INSIDERJUN 17, 2020 10:06 AM EDT
Editor's Note: This article originally appeared on Business Insider.
North Korea's state-sponsored hack of Sony Pictures in 2014 over the movie "The Interview" was...