Collaborate Disseminate
South American cyberespionage group Blind Eagle has infected over 1,600 organizations in Colombia in a recent campaign.
The post 1,600 Victims Hit by South American APT’s Malware appeared first on SecurityWeek.
Continue reading 1,600 Victims Hit by South American APT’s Malware
The $1.4 billion ByBit cryptocurrency heist combined social engineering, stolen AWS session tokens, MFA bypasses and a rigged JavaScript file.
The post How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist appeared first on … Continue reading How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist
Silk Typhoon APT caught using IT supply chain entry points to conduct reconnaissance, siphon data, and move laterally on victim networks.
The post China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain appeared first on SecurityWeek.
Continue reading China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain
An Iranian threat actor was seen targeting UAE organizations with polyglot files to deliver a new backdoor named Sosano.
The post Iranian Hackers Target UAE Firms With Polyglot Files appeared first on SecurityWeek.
Continue reading Iranian Hackers Target UAE Firms With Polyglot Files
North Korean fake IT workers are creating personas on GitHub to land blockchain developer jobs at US and Japanese firms.
The post North Korean Fake IT Workers Pose as Blockchain Developers on GitHub appeared first on SecurityWeek.
Continue reading North Korean Fake IT Workers Pose as Blockchain Developers on GitHub
ESET says hundreds of freelance software developers have fallen victim to North Korean hackers posing as recruiters.
The post Freelance Software Developers in North Korean Malware Crosshairs appeared first on SecurityWeek.
Continue reading Freelance Software Developers in North Korean Malware Crosshairs
Cisco Talos observed Chinese hackers pivoting from a compromised device operated by one telecom to target a device in another telecom.
The post Cisco Details ‘Salt Typhoon’ Network Hopping, Credential Theft Tactics appeared first on SecurityWeek.
Continue reading Cisco Details ‘Salt Typhoon’ Network Hopping, Credential Theft Tactics
A researcher dives into Chinese reports attributing cyberattacks on Northwestern Polytechnical University to the NSA’s TAO division.
The post How China Pinned University Cyberattacks on NSA Hackers appeared first on SecurityWeek.
Continue reading How China Pinned University Cyberattacks on NSA Hackers
China-linked cyberespionage toolkits are popping up in ransomware attacks, forcing defenders to rethink how they combat state-backed hackers.
The post Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines appeared first on Security… Continue reading Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines
Mandiant warns that multiple Russian APTs are abusing a nifty Signal Messenger feature to surreptitiously spy on encrypted conversations.
The post How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying appea… Continue reading How Russian Hackers Are Exploiting Signal ‘Linked Devices’ Feature for Real-Time Spying