Tag: apt
-
Void Banshee exploits CVE-2024-38112 zero-day to spread malware
Void Banshee APT group exploited the Windows zero-day CVE-2024-38112 to execute code via the disabled Internet Explorer. An APT group tracked as Void … First seen on securityaffairs.com Jump to article: securityaffairs.com/165832/apt/void-banshee-cve-2024-38112-zero-day-attacks.html
-
Italy targeted by Chinese APT attacks
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/italy-targeted-by-chinese-apt-attacks
-
Void Banshee APT exploited >>lingering Windows relic<< in zero-day attacks
by
in SecurityNewsThe zero-day exploit used to leverage CVE-2024-38112, a recently patched Windows MSHTML vulnerability, was wielded by an APT group dubbed Void Banshee… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/07/16/cve-2024-38112-void-banshee/
-
New APT Group CloudSorcerer Targets Russian Government Entities
by
in SecurityNewsA previously undocumented advanced persistent threat (APT) group dubbed CloudSorcerer has been observed targeting Russian government entities by lever… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/new-apt-group-cloudsorcerer-targets.html
-
Void Banshee Group Used ‘Windows Relic’ IE in Phishing Campaign
The APT group Void Banshee exploited a now-patched Windows security flaw and the retired Internet Explorer browser to distributed the Atlantida malwar… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/void-banshee-group-used-windows-relic-ie-in-phishing-campaign/
-
Houthi-Aligned APT Targets Mideast Militaries With ‘GuardZoo’ Spyware
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/houthi-aligned-apt-targets-middle-east-militaries-spyware
-
SEXi ransomware rebrands to APT INC, continues VMware ESXi attacks
by
in SecurityNewsThe SEXi ransomware operation, known for targeting VMware ESXi servers, has rebranded under the name APT INC and has targeted numerous organizations i… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/sexi-ransomware-rebrands-to-apt-inc-continues-vmware-esxi-attacks/
-
Tick APT-Gruppe attackiert DLP-Softwareentwickler in Ostasien
by
in SecurityNewsarch hat eine Kampagne der APT-Gruppe Tick gegen ein Unternehmen in Ostasien aufgedeckt und ein bisher unbekanntes Tool gefunden, das von der Gruppe v… First seen on welivesecurity.com Jump to article: www.welivesecurity.com/deutsch/2023/03/14/tick-apt-gruppe-attackiert-dlp-softwareentwickler-in-ostasien/
-
APT Exploits Windows Zero-Day to Execute Code via Disabled Internet Explorer
The Void Banshee APT exploited the CVE-2024-38112 Windows zero-day to infect systems with the Atlantida stealer. The post APT Exploits Windows Zero-Da… First seen on securityweek.com Jump to article: www.securityweek.com/apt-exploits-windows-zero-day-to-execute-code-via-disabled-internet-explorer/
-
Chinese APT Moves to Ransomware in Some Intrusions
by
in SecurityNewsFirst seen on duo.com Jump to article: duo.com/decipher/chinese-apt-moves-to-ransomware-in-some-intrusions
-
Novel CloudSorcerer APT attacks hit Russian government
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/novel-cloudsorcerer-apt-attacks-hit-russian-government
-
New APT CloudSorcerer Malware Hits Russian Targets
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cloudsorcerer-malware-hits-russian/
-
Patch Now: Cisco Zero-Day Under Fire From Chinese APT
by
in SecurityNewsThreat actor Velvet Ant has been exploiting a vulnerability in Cisco’s NX-OS Software for managing a variety of switches, executing commands and dropp… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/patch-now-cisco-zero-day-chinese-apt
-
APT-Angriff auf Fernwartungssoftware? Sicherheitsvorfall bei TeamViewer
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/APT-Angriff-auf-Fernwartungssoftware-Sicherheitsvorfall-bei-TeamViewer-9781567.html
-
Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government
by
in SecurityNewsKaspersky said the CloudSorcerer APT has been abusing public cloud services to exfiltrate data from Russian government entities. The post Kaspersky Fl… First seen on securityweek.com Jump to article: www.securityweek.com/kaspersky-flags-cyberespionage-apt-cloudsorcerer-targeting-russian-government/
-
TeamViewer Cyber-Attack Attributed to Russian APT Midnight Blizzard
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/teamviewer-attack-russian-apt/
-
China-linked APT exploited Cisco NX-OS zero-day to deploy custom malware
by
in SecurityNewsCisco fixed an actively exploited NX-OS zero-day, the flaw was exploited to install previously unknown malware as root on vulnerable switches. Cisco a… First seen on securityaffairs.com Jump to article: securityaffairs.com/165097/apt/cisco-nx-os-zero-day-chinese-hackers.html
-
Russia-linked group APT29 likely breached TeamViewer’s corporate network
Russia-linked APT group, reportedly APT29, is suspected to be behind a hack of TeamViewer ‘s corporate network. TeamViewer discovered that a threat ac… First seen on securityaffairs.com Jump to article: securityaffairs.com/165025/hacking/russia-linked-group-apt29-teamviewer.html
-
‘ChamelGang’ APT Disguises Espionage Activities With Ransomware
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/ics-ot-security/china-nexus-group-using-ransomware-to-disguise-cyber-espionage-activities
-
TeamViewer Internal Systems Accessed by APT Hackers
TeamViewer, a leading provider of remote access software, announced that attackers had compromised its internal corporate IT environment. The company’… First seen on gbhackers.com Jump to article: gbhackers.com/teamviewer-internal-systems-accessed/
-
TeamViewer attributes security incident to Russian APT group Midnight Blizzard
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/teamviewer-attributes-security-incident-to-russian-apt-threat-group-midnight-blizzard
-
‘SneakyChef’ APT Slices Up Foreign Affairs With SugarGh0st
by
in SecurityNews
Tags: aptFirst seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/sneakychef-apt-slices-up-foreign-affairs-with-sugargh0st
-
Russian APT Reportedly Behind New TeamViewer Hack
TeamViewer’s corporate network was hacked and some reports say the Russian group APT29 is behind the attack. The post er’s corporate network was hacke… First seen on securityweek.com Jump to article: www.securityweek.com/russian-apt-reportedly-behind-new-teamviewer-hack/
-
WinorDLL64: Backdoor aus dem Lazarus Arsenal?
by
in SecurityNewsegion und die Überschneidungen in Verhalten und Code lassen vermuten, dass das Tool von der berüchtigten, mit Nordkorea verbündeten APT-Gruppe verwend… First seen on welivesecurity.com Jump to article: www.welivesecurity.com/deutsch/2023/02/23/winordll64-backdoor-aus-dem-lazarus-arsenal/
-
China’s ‘Velvet Ant’ APT Nests Inside Multiyear Espionage Effort
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/china-velvet-ant-apt-multiyear-espionage
-
Die stille Gefahr: Wie APT-Gruppen Unternehmen infiltrieren
by
in SecurityNews
Tags: aptFirst seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/die-stille-gefahr-wie-apt-gruppen-unternehmen-infiltrieren-294171.html
-
Russia-linked APT Nobelium targets French diplomatic entities
French information security agency ANSSI reported that Russia-linked threat actor Nobelium is behind a series of cyber attacks that targeted French di… First seen on securityaffairs.com Jump to article: securityaffairs.com/164757/apt/french-anssi-russia-nobelium-attacks.html
-
22nd April Threat Intelligence Report
by
in SecurityNewsMITRE Corporation disclosed a security event that occurred in January 2024. The attack, which is linked to Chinese APT group UNC5221, involved exploit… First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/22nd-april-threat-intelligence-report/
-
Chinese Velvet Ant Hackers Target F5 Devices in Years-Long Espionage
cover how China-linked Velvet Ant APT exploited F5 BIG-IP devices for years undetected. Sygnia’s detailed analysis exposes tactics used to maintain pe… First seen on hackread.com Jump to article: hackread.com/chinese-velvet-ant-hackers-target-f5-devices/
-
‘Sticky Werewolf’ APT Stalks Aviation Sector
by
in SecurityNewsThe pro-Ukranian group has upgraded its infection chain, with credentials, strategic info on commercial pilots, or billion-dollar designs as the possi… First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/sticky-werewolf-apt-stalks-aviation-sector