24 Oct 2019

Mobile malware increasingly being used for espionage by state-sponsored groups

A new report by BlackBerry shows that advanced persistent threat (APT) groups are relying on mobile malware to a much larger extent then previous research has suggested. In the context of cyber espionage campaigns, state-backed hackers increasingly use mobile malware in combination with traditional malware. Reasons for the growing use

Read More
24 Oct 2019

Bedside Hotel Robot Hacked to Stream In-Room Video

Earlier this year, a security researcher discovered a security flaw in bedside robots used by a Japanese hotel chain that could allow threat actors to remotely spy on hotel guests in their room. Threat actors staying in one of the Japanese hotels could exploit a zero-day flaw in the Tapia

Read More
23 Oct 2019

Czech authorities dismantle alleged Russian cyber-espionage network

In late 2018, Czech law enforcement took down a Russian cyber espionage network set up by Russia’s intelligence agency (the FSB) and Russia’s embassy in Prague, the Czech government announced earlier this week. Russian spies had established a number of hardware and software firms in the country and used the

Read More
22 Oct 2019

Chinese Hackers Use new Microsoft SQL Server Backdoor Malware

Chinese state-backed hackers have been using a malware tool that enables them to access Microsoft SQL Server (MSSQL) systems using a special password and subsequently maintain a presence on those systems without getting detected. The threat actor, known as APT 41, Winnti Group, Blackfly/Suckfly, Wicked Panda and BARIUM, has been

Read More
22 Oct 2019

Hacker Breached Servers Belonging to Multiple VPN Providers

A threat actor has obtained access to servers belonging to NordVPN, TorGuard, and possibly VikingVPN. NordVPN acknowledged that it suffered a data breach in March of 2018 in which a threat actor obtained private keys used by the firm for securing its web servers as well as VPN configuration files.

Read More
21 Oct 2019

NSA And NCSC Warning: Russian Hackers Disguised As Iranian Spies Attacked 35 Countries

The US National Security Agency (NSA) and the UK National Cyber Security Centre (NCSC) warned on Monday that the Russian state-backed hacking group Turla (aka Snake or Uroburos) has been impersonating Iranian state-sponsored hackers in a campaign targeting organizations in the US, the UK and 33 other countries, many of

Read More
21 Oct 2019

Alexa and Google Home abused to eavesdrop and phish passwords

Threat actors can use malicious applications in order to eavesdrop on Amazon Alexa and Google Home users, researchers with Security Research Labs have discovered. Rogue applications can also be used to carry out phishing attacks targeting owners of one of these voice assistants. The two attacks developed by the researchers

Read More
21 Oct 2019

Avast says hackers breached internal network through compromised VPN profile

Anti-virus giant Avast suffered a security breach on September 23, the company admitted on Monday. A threat actor who had been targeting the company since May 14 of this year, got hold of the VPN credentials of a staff member and subsequently used these to compromise the account and escalate

Read More
18 Oct 2019

Researchers reveal the cyber campaign that built China’s new airliner

A new report by CrowdStrike exposes a Chinese cyber espionage campaign that took place over the course of five years and eventually enabled the state-owned Commercial Aircraft Corporation of China (Comac) to build the C919 airliner, which should cost less than half the price of similar airliners produced by Airbus

Read More
17 Oct 2019

Warning: Russian Hackers Break Into European Embassy In Washington

A new study by ESET shows that the Russian state-backed hacking group Cozy Bear, which has been linked to the notorious Democratic National Committee (DNC) hack during the 2016 US Presidential elections, has breached the embassy of a European Union (EU) member state in Washington, D.C. In addition, the group

Read More