28 Sep 2021

Russia Behind ‘Ghostwriter’ Campaign Targeting Germany

The European Union has blamed Russia for an ongoing disinformation campaign referred to as Ghostwriter that is targeting Germany amid political events and elections. Germany is only the latest target of the campaign, which has been ongoing for years and previously attempted to discredit NATO, smeared and cyberattacked Parliament members,

Read More
02 Jun 2021

US Seizes Attacker Domains Used in USAID Phishing Campaign

The United States has seized two command and control malware distribution domains that were utilized in a recently disclosed spearphishing campaign that impersonated email communications from the US Agency for International Development (USAID). The attack was disclosed by Microsoft and Volexity last week, and the operation has been attributed to

Read More
17 Dec 2020

BEC Hits Double Digits as COVID-19 Scams Abound

According to Barracuda Networks, business email compromise attacks have surged in 2020, alongside Covid-19 related scams seeking to lure victims into surrendering passwords or money. During the period of August to October 2020, Barracuda Networks found that the total number of targeted email threats was a whopping 2.3 million. Spear

Read More
29 Oct 2020

Education Sector Facing Disproportionate Level of Spear-Phishing Attacks

A new study conducted by Barracuda Networks has found that educational institutions are disproportionately targeted by spear-phishing attacks when compared to their counterparts across other industries. The new Threat Spotlight analysis concludes that between June and September of 2020, over 1,000 educational facilities faced over 3.5 million spear-phishing attacks. Barracuda

Read More
28 Oct 2020

North Korea-Backed Spy Group Poses as Reporters in Spearphishing Attacks, Feds Warn

The North Korean APT group known as Kimsuky or Hidden Cobra has allegedly been actively attacking businesses posing as reporters located in South Korea. The US Cybersecurity and Infrastructure Security Agency (CISA) posted advisory warning businesses of the new ploy to gain access to US information. The group has been

Read More
02 Oct 2020

New APT Group XDSpy Targets Belarus and Russian-Speakers

A new APT group targeting Belarus and other Eastern European governments and businesses has been uncovered and dubbed “XDSpy.” The advanced persistent threat group has reportedly been conducting malicious activity against Eastern European entities for over nine years. The group does not share any similarities of regional targets, network infrastructure,

Read More
10 Jun 2020

Espionage Group Hits U.S. Utilities with Sophisticated Spy Tool

According to researchers, the threat actor APT group known as TA410 has added a new tool to its arsenal, a modular remote-access trojan (RAT). Proofpoint researchers have connected the group to attacks on the United States’ utility sector, targeting Windows devices. The RAT is called FlowCloud and can access installed

Read More
07 Feb 2020

Iranian Hackers Target Journalists in New Phishing Campaign

A threat group in Iran known as “Charming Kitten” has launched a new campaign that aims to steal email account credentials. The campaign is a phishing attack discovered by Certfa Labs that targets journalists and human rights activists. The group is also widely known as APT35 and is notorious for

Read More
18 Dec 2019

Industrial Cyber-Espionage Campaign Targets Hundreds of Companies

An advanced threat actor, nicknamed Gangnam Industrial Style, targeted hundreds of industrial companies across the globe, using a new version of an old info-stealer to extract sensitive data. The spear-phishing campaign comprises of malicious attachments disguised as PDF files, which drop Separ malware when clicked. Separe malware steals login data

Read More
12 Nov 2019

TrickBot Malware Uses Fake Sexual Harassment Complaints as Bait

Recently, attackers have formulated fake sexual harassment complaints that appear to come from the U.S. Equal Employment Opportunity Commission to disperse TrickBot malware, which targets financial data and acts to deploy other malware. This spearphishing campaign utilizes social engineering tactics to convince targets into exposing sensitive information. The customized phishing

Read More