Tag: spear-phishing
-
>>Water Makara<< Employs Astaroth Malware in Targeted Attacks on Brazilian Organizations
In a new report by Trend Micro Research, a spear-phishing campaign has emerged in Brazil, using a combination of obfuscated JavaScript and Astaroth malware to target companies across various industries.... First seen on securityonline.info Jump to article: securityonline.info/water-makara-employs-astaroth-malware-in-targeted-attacks-on-brazilian-organizations/
-
OpenAI confirms threat actors use ChatGPT to write malware
OpenAI has disrupted over 20 malicious cyber operations abusing its AI-powered chatbot, ChatGPT, for debugging and developing malware, spreading misinformation, evading detection, and conducting spear-phishing attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/openai-confirms-threat-actors-use-chatgpt-to-write-malware/
-
DOJ, Microsoft Take Down Domains Used by Russian-Backed Group
The DOJ and Microsoft in a joint effort seized dozens of domains from a Russian-based threat group known as Star Blizzard, which for more than a year was targeting civil society groups like NGOs and journalist as well as government agencies in a spear-phishing campaign aimed at stealing information. First seen on securityboulevard.com Jump to…
-
Ukraine-Russia Cyber Battles Tip Over Into the Real World
Pig butchering, generative AI, and spear-phishing have all transformed digital warfare. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/ukraine-russia-cyber-battles-tip-over-into-real-world
-
US, Microsoft Seize Domains Used in Russian Spear-Phishing
FSB Hackers Stripped of 107 Domains Used to Steal Credentials. The U.S. Department of Justice and Microsoft seized more than 100 websites allegedly used by a Russian intelligence cyberespionage operation with a fondness for spear phishing. Targets include the national security apparatus and journalists, think tanks, and non-governmental organizations. First seen on govinfosecurity.com Jump to…
-
Fake Job Applications Deliver Dangerous More_eggs Malware to HR Professionals
A spear-phishing email campaign has been observed targeting recruiters with a JavaScript backdoor called More_eggs, indicating persistent efforts to single out the sector under the guise of fake job applicant lures.”A sophisticated spear-phishing lure tricked a recruitment officer into downloading and executing a malicious file disguised as a resume, leading to a more_eggs backdoor infection,”…
-
Cyberattackers Use HR Targets to Lay More_Eggs Backdoor
The FIN6 group is the likely culprit behind a spear-phishing campaign that demonstrates a shift in tactics, from targeting job seekers to going after those who hire. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/attackers-targeting-recruiters-more_eggs-backdoor
-
UK on high alert over Iranian spear phishing attacks, says NCSC
The NCSC and counterpart agencies in the US have issued a warning over enhanced Iranian spear phishing activity targeting politicians, journalists, activists and others with an interest in Middle Eastern affairs First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366612026/UK-on-high-alert-over-Iranian-spear-phishing-attacks-says-NCSC
-
UK and US Warn of Growing Iranian Spear Phishing Threat
Security agencies from the UK and US are urging individuals with Middle East links to beware of Iranian spear phishing attacks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/uk-us-warn-iranian-spearphishing/
-
Sophisticated Spear Phishing Attack Falls Flat Against ITDR
Last month, a threat actor used stolen credentials in an unsuccessful attempt to access a client’s One Drive account. On the surface, this was just another threat actor attempting an account takeover attack that was detected by Adaptive Shield’s ITDR capabilities and denied access by our customer’s security team. However, a deeper investigation revealed that……
-
China’s ‘Earth Baxia’ Spies Exploit Geoserver to Target APAC Orgs
The APT group uses spear-phishing and a vulnerability in a geospatial data-sharing server to compromise organizations in Taiwan, Japan, the Philippines, and South Korea. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/china-earth-baxia-spies-geoserver-apac-orgs
-
Chinese APT Earth Baxia target APAC by exploiting GeoServer flaw
Suspected China-linked APT Earth Baxia targeted a government organization in Taiwan by exploiting a recently patched OSGeo GeoServer GeoTools flaw. Trend Micro researchers reported that China-linked APT group Earth Baxia has targeted a government organization in Taiwan and potentially other countries in the Asia-Pacific (APAC) region. The threat actor used spear-phishing emails and exploited the…
-
US charges Chinese national over spear-phishing attacks against agencies
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/us-charges-chinese-national-over-spear-phishing-attacks-against-agencies
-
Chinese Engineer Indicted for Alleged Cyber Espionage Campaign Against US Aerospace Industry
A Chinese national, Song Wu, has been indicted on 14 counts of wire fraud and 14 counts of aggravated identity theft, stemming from an alleged multi-year spear phishing campaign to... First seen on securityonline.info Jump to article: securityonline.info/chinese-engineer-indicted-for-alleged-cyber-espionage-campaign-against-us-aerospace-industry/
-
Chinese man charged for spear-phishing against NASA and US Government
US DoJ charged a Chinese national who used spear-phishing emails to obtain sensitive info from NASA, the U.S. Air Force, Navy, Army, and the FAA. The U.S. DoJ charged a Chinese national, Song Wu (39), who used spear-phishing emails to target employees of NASA, the U.S. Air Force, Navy, Army, and the FAA.
-
DoJ: Chinese Man Used Spear-Phishing to Obtain Software From NASA, Military
Chinese national Song Wu allegedly sent spear-phishing emails to NASA, Air Force, Navy, Army, and FAA employees. The post DoJ: Chinese Man Used Spear-Phishing to Obtain Software From NASA, Military appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/doj-chinese-man-used-spear-phishing-to-obtain-software-from-nasa-military/
-
Chinese Hackers Charged for Multi-Year Spear-Phishing Attacks
Tags: attack, china, ciso, compliance, cyber, cybersecurity, fraud, hacker, identity, phishing, spear-phishingSong Wu, a Chinese national, has been indicted on charges of wire fraud and aggravated identity theft. The charges stem from his alleged involvement in a sophisticated spear-phishing campaign targeting sensitive U.S. research and technology. This case highlights ongoing concerns about cybersecurity and protecting valuable intellectual property. Decoding Compliance: What CISOs Need to Know Join…
-
DOJ indicts Chinese national for spear phishing campaign against NASA, FAA, Air Force
First seen on therecord.media Jump to article: therecord.media/doj-indicts-chinese-nationa-nasa-data-theft-aviation
-
Chinese national accused by Feds of spear-phishing for NASA, military source code
May have reeled in blueprints related to weapons development First seen on theregister.com Jump to article: www.theregister.com/2024/09/17/chinese_national_nasa_phishing_indictment/
-
Iranische Angreifer missbrauchen Backdoor für SpearAngriffe
In den meisten Beispielen erstellt BugSleep eine geplante Aufgabe mit demselben Namen wie die Mutex, die die Persistenz der Malware gewährleistet. Die… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/iranische-angreifer-missbrauchen-backdoor-fuer-phishing-angriffe/a37886/
-
Iranische Hackergruppe zielt auf politische und diplomatische Vertreter
Kürzlich wurden neue Erkenntnisse über gezielte Spear-Phishing-Angriffe auf Whatsapp-Nutzer veröffentlicht. Diese Angriffe werden der iranischen Gruppe APT42 zugeschrieben, die Verbindungen zu den iranischen Revolutionsgarden (IRGC) haben soll. Ziel der Angriffe sind Personen in verschiedenen Ländern, darunter Israel, Palästina, Iran, die Vereinigten Staaten und Großbritannien. Besonders im Fokus stehen politische und diplomatische Vertreter sowie andere Persönlichkeiten…
-
Google raps Iran’s APT42 for raining down spear-phishing attacks
First seen on theregister.com Jump to article: www.theregister.com/2024/08/15/google_iran_apt42_campaigns/
-
Mustang Panda Feeds Worm-Driven USB Attack Strategy
A fresh wave of attacks on APAC government entities involves both self-propagating malware spreading via removable drives and a spear-phishing campaign. Source: www.darkreading.com/cyberattacks-data-breaches/mustang-panda-worm-driven-usb-attack comments: 0
-
Gamaredon APT Launches Spear-Phishing Campaign Targeting Ukrainian Military
A sophisticated spear-phishing campaign orchestrated by the Gamaredon APT group has emerged as a threat to Ukrainian military personnel. Cyble Researc… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/gamaredon-campaign/
-
Decipher Podcast: Rebekah Brown and John Scott-Railton on COLDRIVER and Russian Cyberespionage
Rebekah Brown and John Scott-Railton of the Citizen Lab join Dennis Fisher to dive into their group’s new report on highly targeted spear phishing cam… First seen on duo.com Jump to article: duo.com/decipher/decipher-podcast-rebekah-brown-and-john-scott-railton-on-coldriver-and-russian-cyberespionage
-
Iranian Cyber Group TA453 Targets Jewish Leader with New AnvilEcho Malware
Iranian state-sponsored threat actors have been observed orchestrating spear-phishing campaigns targeting a prominent Jewish figure starting in late J… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/iranian-cyber-group-ta453-targets.html
-
Blind Eagle Hackers Exploit Spear-Phishing to Deploy RATs in Latin America
Cybersecurity researchers have shed light on a threat actor known as Blind Eagle that has persistently targeted entities and individuals in Colombia, … First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/blind-eagle-hackers-exploit-spear.html
-
Western, Russian Civil Society Targeted in Sophisticated Phishing Attacks
Multiple Russian, Belarusian, and Western entities perceived as Russia’s enemies have been targeted in two recent spear-phishing campaigns. The post W… First seen on securityweek.com Jump to article: www.securityweek.com/western-russian-civil-society-targeted-in-sophisticated-phishing-attacks/