Collaborate Disseminate
Russia-linked APT28 deploys the GooseEgg post-exploitation tool against numerous US and European organizations.
The post Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations appeared first on SecurityWeek.
Continue reading Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations
Two Chinese cyberespionage groups have been targeting entities and member countries affiliated with ASEAN.
The post Chinese Cyberspies Targeting ASEAN Entities appeared first on SecurityWeek.
Continue reading Chinese Cyberspies Targeting ASEAN Entities
Earth Krahang, likely a penetration team of Chinese government contractor I-Soon, has compromised 48 government entities worldwide.
The post Chinese APT Hacks 48 Government Organizations appeared first on SecurityWeek.
Continue reading Chinese APT Hacks 48 Government Organizations
Chinese APT Evasive Panda compromises a software developer’s supply chain to target Tibetans with malicious downloaders.
The post Chinese Cyberspies Target Tibetans via Watering Hole, Supply Chain Attacks appeared first on SecurityWeek.
Continue reading Chinese Cyberspies Target Tibetans via Watering Hole, Supply Chain Attacks
Chinese threat actors target Ivanti VPN appliances with new malware designed to persist system upgrades.
The post Chinese Cyberspies Use New Malware in Ivanti VPN Attacks appeared first on SecurityWeek.
Continue reading Chinese Cyberspies Use New Malware in Ivanti VPN Attacks
Microsoft announced that it caught Chinese, Russian, and Iranian hackers using its AI tools—presumably coding tools—to improve their hacking abilities.
From their report:
In collaboration with OpenAI, we are sharing threat intelligence showing detected state affiliated adversaries—tracked as Forest Blizzard, Emerald Sleet, Crimson Sandstorm, Charcoal Typhoon, and Salmon Typhoon—using LLMs to augment cyberoperations.
The only way Microsoft or OpenAI would know this would be to spy on chatbot sessions. I’m sure the terms of service—if I bothered to read them—gives them that permission. And of course it’s no surprise that Microsoft and OpenAI (and, presumably, everyone else) are spying on our usage of AI, but this confirms it…
Continue reading Microsoft Is Spying on Users of Its AI Tools
A possibly China-linked threat actor uses a custom backdoor in a cyberespionage campaign ongoing since at least 2021.
The post Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years appeared first on SecurityWeek.
Continue reading Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years
The China-linked cyberespionage group Blackwood has been caught delivering malware to entities in China and Japan.
The post Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware appeared first on SecurityWeek.
Continue reading Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware
The agency says the bug is being actively exploited and poses a risk to federal networks.
The post CISA issues emergency directive for federal agencies to patch Ivanti VPN vulnerabilities appeared first on CyberScoop.
Russian threat group ColdRiver has developed Spica, a malware that enables it to compromise systems and steal information.
The post Russian APT Known for Phishing Attacks Is Also Developing Malware, Google Warns appeared first on SecurityWeek.
Continue reading Russian APT Known for Phishing Attacks Is Also Developing Malware, Google Warns