Collecting Cyber-News from over 60 sources

Tag: cyberespionage

China’s Hacking of US Telecoms: Officials Name More Victims

Jan 6, 2025 9:17 PM

by

Andy Stern

in SecurityNews

Tags: china, communications, cyberespionage, hacker, hacking, network

Reportedly Hacked: Charter Communications, Consolidated Communications, Windstream. The nine known victims of a broad and significant cyberespionage campaign the White House has tied to China reportedly include Charter Communications, Consolidated Communications and Windstream, as officials said the hackers’ earliest known telecom network penetration began in mid-2023. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/chinas-hacking-us-telecoms-officials-name-more-victims-a-27222
More telecom firms were breached by Chinese hackers than previously reported

Jan 6, 2025 2:18 PM

by

Andy Stern

in SecurityNews

Tags: access, at&t, attack, breach, china, cisco, communications, cyber, cyberespionage, cybersecurity, data, defense, disinformation, espionage, exploit, finance, fortinet, framework, government, group, hacker, Hardware, infrastructure, intelligence, international, microsoft, mobile, network, phone, regulation, risk, risk-management, router, spy, technology, threat, vulnerability

Chinese hackers linked to the Salt Typhoon cyberespionage operation have breached even more US telecommunications firms than initially reported.New victims, Charter Communications, Consolidated Communications, and Windstream, add to a growing list that already includes AT&T, Verizon, T-Mobile, and Lumen Technologies.Earlier, the US authorities informed that nine telecom firms have been affected by the Chinese espionage…
China-linked Salt Typhoon APT compromised more US telecoms than previously known

Jan 6, 2025 12:17 PM

by

Andy Stern

in SecurityNews

Tags: apt, china, communications, cyberespionage, group

China-linked Salt Typhoon group that breached multiple US telecoms compromised more firms than previously known, WSJ says. The China-linked cyberespionage group Salt Typhoon targeted more US telecoms than previously known, as The Wall Street Journal reported. According to WSJ, wich cited people familiar with the matter, the Chinese cyberspies also compromised Charter Communications and Windstream.…
US government sanctions Chinese cybersecurity company linked to APT group

Jan 3, 2025 11:17 PM

by

Andy Stern

in SecurityNews

Tags: access, advisory, apt, attack, botnet, cctv, china, computer, control, cyberespionage, cybersecurity, ddos, exploit, finance, firewall, government, group, hacker, infrastructure, intelligence, iot, linux, malicious, malware, network, office, router, service, technology, threat, usa

The US Department of Treasury’s Office of Foreign Assets Control (OFAC) has issued sanctions against a Beijing cybersecurity company for its role in attacks attributed to a Chinese cyberespionage group known as Flax Typhoon.The company, called Integrity Technology Group (Integrity Tech), is accused of providing the computer infrastructure that Flax Typhoon used in its operations…
China-linked APT Salt Typhoon breached a ninth U.S. telecommunications firm

Dec 29, 2024 5:43 PM

by

Andy Stern

in SecurityNews

Tags: apt, china, cyberespionage, group, threat

A White House official confirmed that China-linked threat actor Salt Typhoon breached a ninth U.S. telecommunications company. A White House official confirmed confirmed that China-linked APT group Salt Typhoon has breached a ninth U.S. telecoms company as part of a cyberespionage campaign aimed at telco firms worldwide. >>A White House official said Friday the US…
Feds Identify Ninth Telecom Victim in Salt Typhoon Hack

Dec 27, 2024 8:43 PM

by

Andy Stern

in SecurityNews

Tags: access, attack, china, communications, cyberespionage, hacker, infrastructure, vulnerability

Officials Say Chinese Hackers Maintained ‘Broad and Full’ Access to Telecom Systems. Federal officials told reporters Friday that ongoing investigations into the Salt Typhoon cyberespionage campaign have identified a ninth victim company affected by the attack, in which hackers maintained broad and full access to vulnerable communications infrastructure across the country. First seen on govinfosecurity.com…
US Congress Authorizes $3B to Replace Chinese Telecom Gear

Dec 26, 2024 8:43 PM

by

Andy Stern

in SecurityNews

Tags: china, country, cyberespionage, defense, threat

Federal ‘Rip-and-Replace’ Program Gets Funding Boost in Defense Bill. The 2025 National Defense Authorization Act includes $3 billion to fund an FCC program aimed at replacing Chinese-made telecommunications equipment across the country amid heightened threats from Beijing following the discovery of the Salt Typhoon cyberespionage campaign. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/us-congress-authorizes-3b-to-replace-chinese-telecom-gear-a-27160
US Considers TP-Link Ban After Volt Typhoon Hacking Campaign

Dec 23, 2024 9:42 PM

by

Andy Stern

in SecurityNews

Tags: china, cyberespionage, hacking, infrastructure, risk, router

Major Chinese Router Manufacturer Facing Increased Scrutiny After Chinese Espionage. U.S. authorities have launched multiple investigations while reportedly considering banning the widely popular Chinese-manufactured TP-Link routers amid ongoing security risks linked to Chinese cyberespionage and hacking campaigns targeting American critical infrastructure sectors. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/us-considers-tp-link-ban-after-volt-typhoon-hacking-campaign-a-27139
Top 7 zero-day exploitation trends of 2024

Dec 23, 2024 10:42 AM

by

Andy Stern

in SecurityNews

Tags: access, ai, attack, authentication, backdoor, botnet, breach, bug-bounty, business, china, ciso, cloud, computing, control, corporate, cve, cyberespionage, cybersecurity, data, data-breach, defense, email, endpoint, exploit, firewall, flaw, framework, github, google, government, group, hacker, identity, infrastructure, injection, Internet, ivanti, kev, leak, linux, malicious, malware, ml, monitoring, moveIT, network, north-korea, open-source, password, programming, pypi, ransomware, remote-code-execution, risk, service, software, sql, supply-chain, tool, training, unauthorized, update, vpn, vulnerability, windows, zero-day

Zero-day vulnerabilities saw big growth once again in 2024. With no patch available, zero-day flaws give attackers a significant jump on cybersecurity defense teams, making them a critical weapon for attacking enterprise systems.But while all zero-days are essential for CISOs and their team to be aware of, and for vendors to remedy in a timely…
Ukrainian military targeted by new Sandworm-linked cyberespionage campaign

Dec 20, 2024 9:45 PM

by

Andy Stern

in SecurityNews

Tags: cyberespionage, military, ukraine

First seen on scworld.com Jump to article: www.scworld.com/brief/ukrainian-military-targeted-by-new-sandworm-linked-cyberespionage-campaign
China accuses US of cyberespionage against tech firms

Dec 19, 2024 9:46 PM

by

Andy Stern

in SecurityNews

Tags: china, cyberespionage

First seen on scworld.com Jump to article: www.scworld.com/brief/china-accuses-us-of-cyberespionage-against-tech-firms
Turkish defense orgs subjected to Bitter cyberespionage intrusions

Dec 19, 2024 9:46 PM

by

Andy Stern

in SecurityNews

Tags: cyberespionage, defense

First seen on scworld.com Jump to article: www.scworld.com/brief/turkish-defense-orgs-subjected-to-bitter-cyberespionage-intrusions
‘Bitter’ cyberspies target defense orgs with new MiyaRAT malware

Dec 17, 2024 11:42 PM

by

Andy Stern

in SecurityNews

Tags: cyberespionage, defense, group, malware, threat

A cyberespionage threat group known as ‘Bitter’ was observed targeting defense organizations in Turkey using a novel malware family named MiyaRAT. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/bitter-cyberspies-target-defense-orgs-with-new-miyarat-malware/
“Ratten”-Malware greift Kameras und DVR an

Dec 17, 2024 5:42 PM

by

Andy Stern

in SecurityNews

Tags: authentication, china, computer, control, crime, cve, cyberattack, cyberespionage, intelligence, Internet, malware, open-source, router, tool, usa, vpn, vulnerability
SAP systems increasingly targeted by cyber attackers

Dec 14, 2024 5:05 AM

by

Andy Stern

in SecurityNews

Tags: access, attack, authentication, business, cloud, credentials, cve, cyber, cybercrime, cyberespionage, cybersecurity, data, data-breach, espionage, exploit, finance, group, hacker, intelligence, Internet, ransomware, remote-code-execution, russia, sap, service, software, technology, threat, unauthorized, update, vulnerability, zero-day

A review of four years of threat intelligence data, presented Friday at Black Hat by Yvan Genuer, a senior security researcher at Onapsis, reports a spike in hacker interest in breaking into enterprise resource planning (ERP) systems from SAP in 2020 that was sustained until the end of 2023.The vast majority (87%) of the Forbes…
Researchers expose a surge in hacker interest in SAP systems

Dec 13, 2024 8:05 PM

by

Andy Stern

in SecurityNews

Tags: access, attack, authentication, business, cloud, credentials, cve, cyber, cybercrime, cyberespionage, cybersecurity, data, data-breach, espionage, exploit, finance, group, hacker, intelligence, Internet, ransomware, remote-code-execution, russia, sap, service, software, technology, threat, unauthorized, update, vulnerability, zero-day

A review of four years of threat intelligence data, presented Friday at Black Hat by Yvan Genuer, a senior security researcher at Onapsis, reports a spike in hacker interest in breaking into enterprise resource planning (ERP) systems from SAP in 2020 that was sustained until the end of 2023.The vast majority (87%) of the Forbes…
Experts discovered the first mobile malware families linked to Russia’s Gamaredon

Dec 13, 2024 10:07 AM

by

Andy Stern

in SecurityNews

Tags: android, apt, cyberespionage, group, malware, mobile, russia, spyware, tool

The Russia-linked APT Gamaredon used two new Android spyware tools called BoneSpy and PlainGnome against former Soviet states. Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT group Gamaredon (a.k.a. Armageddon, Primitive Bear, and ACTINIUM). These are the first known mobile malware families linked to the Russian APT. The cyberespionage group is behind a…
Southeast Asia subjected to suspected Chinese cyberespionage campaign

Dec 12, 2024 10:05 PM

by

Andy Stern

in SecurityNews

Tags: china, cyberespionage

First seen on scworld.com Jump to article: www.scworld.com/brief/southeast-asia-subjected-to-suspected-chinese-cyberespionage-campaign
Operation Digital Eye: Chinese APT Exploits Visual Studio Code Tunnels in High-Stakes Espionage Campaign

Dec 12, 2024 5:05 AM

by

Andy Stern

in SecurityNews

Tags: apt, business, china, cyber, cyberespionage, espionage, exploit, group, service, threat

In a sophisticated cyberespionage campaign dubbed Operation Digital Eye, SentinelOne and Tinexta Cyber uncovered activities linked to a Chinese Advanced Persistent Threat (APT) group targeting large business-to-business IT service providers... First seen on securityonline.info Jump to article: securityonline.info/operation-digital-eye-chinese-apt-exploits-visual-studio-code-tunnels-in-high-stakes-espionage-campaign/
VSCode Remote Tunnels exploited in suspected Chinese cyberespionage campaign

Dec 11, 2024 9:06 PM

by

Andy Stern

in SecurityNews

Tags: china, cyberespionage, exploit

First seen on scworld.com Jump to article: www.scworld.com/brief/vscode-remote-tunnels-exploited-in-suspected-chinese-cyberespionage-campaign
Ukrainian defense firms subjected to suspected Russian cyberespionage campaign

Dec 10, 2024 10:08 PM

by

Andy Stern

in SecurityNews

Tags: cyberespionage, defense, russia, ukraine

First seen on scworld.com Jump to article: www.scworld.com/brief/ukrainian-defense-firms-subjected-to-suspected-russian-cyberespionage-campaign
US subjected to ongoing Chinese cyberespionage campaign

Dec 9, 2024 9:07 PM

by

Andy Stern

in SecurityNews

Tags: china, cyberespionage

First seen on scworld.com Jump to article: www.scworld.com/brief/us-subjected-to-ongoing-chinese-cyberespionage-campaign
US Organization in China Falls Victim to Suspected Chinese Espionage Campaign

Dec 7, 2024 5:48 AM

by

Andy Stern

in SecurityNews

Tags: attack, china, cyberespionage, espionage, threat

A recent report from the Symantec Threat Hunter Team reveals a troubling cyberespionage operation targeting a large US organization operating in China. The attack, suspected to be the work of... First seen on securityonline.info Jump to article: securityonline.info/us-organization-in-china-falls-victim-to-suspected-chinese-espionage-campaign/
FCC calls for urgent cybersecurity overhaul amid Salt Typhoon espionage case

Dec 6, 2024 12:50 PM

by

Andy Stern

in SecurityNews

Tags: access, at&t, attack, breach, china, cisa, communications, cyber, cyberattack, cyberespionage, cybersecurity, data, defense, espionage, framework, infrastructure, intelligence, law, monitoring, network, phone, risk, risk-management, service, technology, threat, unauthorized, usa, vulnerability

In the wake of the Salt Typhoon cyberespionage campaign allegedly linked to China, Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel has proposed immediate measures to strengthen the cybersecurity of US telecommunications infrastructure.The FCC’s action came a day after top US security agencies briefed senators and the Commission on the scope of Salt Typhoon’s espionage campaign,…
Cyberspionage auf die Gamaredon-Art: Mit diesen Tools wurde die Ukraine in 2022 und 2023 ausgespäht

Dec 1, 2024 1:25 PM

by

Andy Stern

in SecurityNews

Tags: cyberespionage, tool, ukraine

ESET Research hat eine umfassende technische Analyse durchgeführt, wie und mit welchem Toolset Gamaredon seine Cyberspionage-Aktivitäten in der Ukrain… First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/eset-research/cyberspionage-auf-die-gamaredon-art-mit-diesen-tools-wurde-die-ukraine-in-2022-und-2023-ausgespaeht/
Niederländische Polizeisysteme offenbar gehackt

Dec 1, 2024 12:23 PM

by

Andy Stern

in SecurityNews

Tags: cyberattack, cyberespionage

Die niederländische Polizei ist offenbar Opfer von Cyberspionage durch einen anderen Staat geworden. Bei dem Hackerangriff sollen sensible Daten von f… First seen on 8com.de Jump to article: www.8com.de/cyber-security-blog/niederlandische-polizeisysteme-offenbar-gehackt
Hunting Genetics Data – Cyberespionage In The Context Of Geopolitical Conflicts

Dec 1, 2024 1:19 AM

by

Andy Stern

in SecurityNews

Tags: cyberespionage, data

First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/hunting-genetics-data-cyberespionage-in-the-context-of-geopolitical-conflicts
Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit

Nov 27, 2024 8:11 PM

by

Andy Stern

in SecurityNews

Tags: access, antivirus, apt, attack, backdoor, browser, business, computer, cve, cybercrime, cyberespionage, defense, endpoint, exploit, flaw, germany, government, group, insurance, intelligence, malicious, microsoft, msp, password, powershell, russia, software, threat, ukraine, vulnerability, windows, zero-day

A Russia-aligned group that engages in both cybercrime and cyberespionage operations used a zero-click exploit chain last month that combined previously unknown and unpatched vulnerabilities in Firefox and Windows.The campaign, whose goal was to deploy the group’s RomCom backdoor on computers, targeted users from Europe and North America. The APT group, also known as Storm-0978,…
Russian Hackers Exploit WiFi in Sophisticated New Attack

Nov 25, 2024 11:31 PM

by

Andy Stern

in SecurityNews

Tags: attack, cyber, cyberespionage, defense, exploit, group, hacker, russia, ukraine, wifi

‘Nearest Neighbor Attack’ Bypasses Cyber Defenses by Breaching WiFi Networks. A Russian cyberespionage group hacked a Washington, D.C.-based organization focused on Ukraine by deploying a new attack technique that exploits Wi-Fi connectivity, according to new research. The nearest neighbor attack: methodology could lead to a significant broadening of targeting and attacks. First seen on govinfosecurity.com…
Asia, Europe subjected to Russian cyberespionage campaign

Nov 25, 2024 10:31 PM

by

Andy Stern

in SecurityNews

Tags: cyberespionage, russia

First seen on scworld.com Jump to article: www.scworld.com/brief/asia-europe-subjected-to-russian-cyberespionage-campaign