State-Sponsored APTs Dangle Job Opps to Lure In Spy Victims
Fake job offers have become a top phishing tactic for state-sponsored threat actors to lure in unsuspecting targets in the wake of the COVID-19 pandemic, as many reconsider their...
Summertime Blues: TA558 Ramps Up Attacks on Hospitality, Travel Sectors
Another threat actor targeting hospitality, hotel, and travel organizations has re-emerged during the busy summer travel season: a smaller, financially motivated player named TA558.
According to new research from Proofpoint,...
Which Security Bugs Will Be Exploited? Researchers Create an ML Model to Find Out
Using machine learning trained on data from more than two dozen sources, a team of university researchers has created a model for predicting which vulnerabilities will likely result in...
5 Russia-Linked Groups Target Ukraine in Cyberwar
Over the past eight months, at least five Russian state-sponsored or cybercriminal groups have targeted Ukrainian government agencies and private companies in dozens of operations that aimed to disrupt...
Mac Attack: North Korea’s Lazarus APT Targets Apple’s M1 Chip
North Korean advanced persistent threat (APT) Lazarus is casting a wider net with its ongoing Operation In(ter)ception campaign, targeting Macs with Apple's M1 chip.
The state-sponsored group is continuing its...
China’s APT41 Embraces Baffling Approach for Dropping Cobalt Strike Payload
An analysis of China-backed advanced persistent threat (APT) actor APT41's activities has shown the group to be using a unique — and somewhat inexplicable — method for deploying its main Cobalt...
Celer Network shuts down bridge over potential DNS hijacking
Interoperability protocol Celer Network has asked its users to revoke the approval for several contracts after shutting down its cBridge over a suspected Domain Name System (DNS) hijacking. According to...
Building the Business Case for DevSecOps
“Resistance to change is proportional to how much the future might be altered by any given act.” — Stephen King
Humans are naturally resistant to change. The fear of the...
China-Backed RedAlpha APT Builds Sprawling Cyber-Espionage Infrastructure
The RedAlpha advanced persistent threat (APT) group, thought to be linked to the Chinese state, has been spying on global humanitarian, think tank, and government organizations thanks to a...
‘Operation Sugarush’ Mounts Concerning Spy Effort on Shipping, Healthcare Industries
A Persian-speaking threat group has been discovered targeting industries ranging from healthcare to energy, with a particular focus on the shipping sector.
According to a report
from Mandiant, which named the...
