Sandworm APT’s initial access subgroup hits organizations accross the globe

A subgroup of Russia’s Sandworm APT has been working to achieve initial and persistent access to the IT networks of organizations working in economic sectors Russia is interested in. “In 2022, its primary focus was Ukraine, specifically tar… Continue reading Sandworm APT’s initial access subgroup hits organizations accross the globe

Can AI Early Warning Systems Reboot the Threat Intel Industry?

News analysis: The big AI platforms are emerging as frontline early warning systems, detecting nation-state hackers at the outset of their campaigns. Can this help save the threat intel industry?
The post Can AI Early Warning Systems Reboot the Threat … Continue reading Can AI Early Warning Systems Reboot the Threat Intel Industry?

China-aligned PlushDaemon APT compromises supply chain of Korean VPN

ESET researchers have uncovered a supply chain attack targeting a South Korean VPN provider, carried out by PlushDaemon, a newly identified China-aligned APT group. In this cyberespionage campaign, the attackers compromised the legitimate installer, re… Continue reading China-aligned PlushDaemon APT compromises supply chain of Korean VPN

EAGERBEE, with updated and novel components, targets the Middle East

Kaspersky researchers analyze EAGERBEE backdoor modules, revealing a possible connection to the CoughingDown APT actor. Continue reading EAGERBEE, with updated and novel components, targets the Middle East

Treasury workstations hacked by China-linked threat actors

According to a letter sent to Senate leaders and obtained by CyberScoop, the compromises occurred through third-party software provider BeyondTrust, which provides identity and access management security solutions.

The post Treasury workstations hacked by China-linked threat actors appeared first on CyberScoop.

Continue reading Treasury workstations hacked by China-linked threat actors