China-Based Cyber Espionage Group Reportedly Behind …

Personal data on over 8,100 individuals and confidential business information likely exposed in June 2019 incident. A data breach at Japan’s Mitsubishi Electric that may have exposed some 200 MB of personal and confidential business data is the latest reminder of the growing threat many organizations face from sophisticated cyber espionage groups. Mitsubishi on Monday
Read more
6 Comments

China-Based Cyber Espionage Group Targeting Orgs in …

Dozens of organizations across multiple sectors have become victims of APT20 in the past two years. An advanced persistent threat (APT) actor likely operating out of China has, for the past two years at least, been quietly targeting organizations in the United States and around the globe in a sweeping espionage campaign. Among its dozens
Read more
9 Comments

Facebook Fixes WhatsApp Group Chat Security Issue

Flaw allowed attackers to repeatedly crash group chat and force users to uninstall and reinstall app, Check Point says. Facebook has fixed a bug in its WhatsApp chat platform that gave attackers a way to send a malicious group-chat message capable of repeatedly crashing the entire application for all members of a targeted chat group.
Read more
58 Comments

The Newest Threat Group on Microsoft’s Radar

Hacking group has been targeting telecommunication providers. Microsoft today published a report detailing activity by a new threat group it dubbed Gallium in keeping with the company’s internal practice of assigning chemical elements to attack groups. The bulk of Gallium’s activity, which primarily targeted telecommunication providers, was observed throughout 2018 into mid-2019, report researchers with
Read more
1 Comment

Chinese Cyber Espionage Group Steals SMS Messages …

APT41’s new campaign is latest to highlight trend by Chinese threat groups to attack upstream service providers as a way to reach its intended targets, FireEye says. APT41, a Chinese hacking group known for its prolific state-sponsored espionage campaigns, has begun targeting telecommunications companies with new malware designed to monitor and save SMS traffic from
Read more
12 Comments

Suspected Hacker Group Creates Network of Fake LinkedIn Profiles

Author: Dell SecureWorks Counter Threat Unit™ Threat Intelligence Date: 07 October 2015 Summary While tracking a suspected Iran-based threat group known as Threat Group-2889[1] (TG-2889), Dell SecureWorks Counter Threat Unit™ (CTU) researchers uncovered a network of fake LinkedIn profiles. These convincing profiles form a self-referenced network of seemingly established LinkedIn users. CTU researchers assess with
Read more
1 Comment

Researchers Link Magecart Group 4 to Cobalt Group

Their findings demonstrate how Group 4 is likely conducting server-side skimming in addition to client-side activity. Security researchers have discovered a link between Magecart Group 4 and Cobalt Group, a well-known, financially motivated group in operation since 2015. Findings indicate Group 4 is not only conducting client-side skimming but was, and likely still is, doing
Read more
6 Comments

New Silent Starling Attack Group Puts Spin on BEC

The West African cybergang has successfully infiltrated more than 500 companies using a tactic dubbed ‘vendor email compromise.’ A new West African cybercriminal group is targeting vendors with a technique called “vendor email compromise,” which it has used to successfully compromise more than 700 employee email accounts at more than 500 companies in at least
Read more
18 Comments

Indictments Do Little to Stop Iranian Group from …

Cobalt Dickens targeted more than 60 universities in the US and elsewhere this summer, according to a new report. Cobalt Dickens, a threat group that the US has accused of working on behalf of the Iranian government, has launched a large global phishing campaign aimed at students, faculty, and staff at dozens of universities. The
Read more
7 Comments

Chinese Group Built Advanced Trojan by Reverse …

APT3 quietly monitored an NSA attack on its systems and used the information to build a weapon of its own. Chinese threat actor APT3 quietly monitored the US National Security Agency’s use of a highly sophisticated cyber attack tool and then reverse engineered the code to build an advanced Trojan of its own called Bemstour.
Read more
21 Comments