25 Oct 2021

FIN7 Lures Unwitting Security Pros to Carry Out Ransomware Attacks

The cybercrime gang behind the Carbanak backdoor malware, FIN7, has allegedly launched a new campaign in which it hires real security professionals to do some of its dirty work instead of forming partnerships with other criminal entities. According to a new report from Gemini Advisory, FIN7 has assembled a fake

Read More
20 Oct 2021

Fresh APT Harvester Reaps Telco, Government Data

A new APT group named Harvester by security researchers is reportedly attacking telcos, IT companies, and government sector targets in a campaign that has been consistent since June. The group is likely a nation-state backed entity and is using custom malware and stealthy tactics, according to researchers. The group has

Read More
01 Oct 2021

New APT ChamelGang Targets Russian Energy, Aviation Orgs

A new APT group has emerged that is specifically targeting the fuel, energy, and aviation industries in Russia via exploiting known vulnerabilities like the Microsoft Exchange Server’s ProxyShell and leveraging existing malware. The group first appeared in March, according to researchers, and has targeted entities in ten countries although they

Read More
23 Sep 2021

New advanced hacking group targets governments, engineers worldwide

A new hacking group called FamousSparrow has been detected by researchers at ESET. The team stated on Thursday that the advanced persistent threat (APT) group is targeting governments and engineers in Europe, the UK, Israel, Saudi Arabia, the Americas, West Africa, Taiwan, and other regions. The APT is believed to

Read More
17 Sep 2021

USG Warns Of ‘Critical’ Vulnerability That Poses ‘Serious Risk’ To Defense Contractors, Others

Earlier this week, the US FBI and Cybersecurity and Infrastructure Security Agency released a joint advisory warning the public of alleged active exploitation of a critical vulnerability found in a popular password management solution called Zoho. Zoho’s ManageEngine AdSelfService Plus, a tool that aids users in creating strong passwords and

Read More
27 Aug 2021

US Media, Retailers Targeted by New SparklingGoblin APT

Cybersecurity researchers at ESET have identified a new threat actor utilizing an undocumented backdoor to infiltrate organizations in the education, retail, and government sectors. The advanced persistent threat (APT) group is an emerging international cybercriminals gang that is broadening its targets to include universities, media firms, and one computer retailer

Read More
16 Jul 2021

Fake Zoom App Dropped by New APT ‘LuminousMoth’

A suspected Chinese advanced persistent threat (APT) group is spreading malicious Zoom software, seeking to spy on targets in Southeast Asia. The group is referred to as LuminousMoth, and focuses on cyber espionage and information theft from high-profile targets such as governments in Asia. Cybersecurity researchers have detected roughly 100

Read More
15 Jul 2021

Chinese Hackers Target Government Entities in Widespread Campaign

According to a new report from Kaspersky, a recently discovered advanced persistent threat (APT) dubbed LuminousMoth is targeting a large number of organizations in South Asia. The campaign involves cyberespionage attacks on organizations and government entities and has been ongoing since at least October 2020. Contrary to similar attacks that

Read More
06 Jul 2021

Widespread Brute-Force Attacks Tied to Russia’s APT28

US and UK authorities have declared that a known advanced threat actor, APT28, also referred to as Fancy Bear or Strontium, has been tied to a range of brute-force password spraying attacks against hundreds of government and private sector targets worldwide, including European governments and military. The joint alert was

Read More
11 Jun 2021

‘Fancy Lazarus’ Cyberattackers Ramp up Ransom DDoS Efforts

APT group “Fancy Lazarus” has been ramping up its ransom DDoS efforts in several new campaigns against US entities. The group is known for masquerading as various APT groups to distract security researchers. Researchers state the APT group is launching a new series of attacks using a combination of the

Read More