Salt Typhoon gained initial access to telecoms through Cisco devices

The Chinese nation-state threat group primarily gained access to Cisco devices with legitimate login credentials, according to Cisco Talos.

The post Salt Typhoon gained initial access to telecoms through Cisco devices appeared first on CyberScoop.

Continue reading Salt Typhoon gained initial access to telecoms through Cisco devices

Hackers pose as employers to steal crypto, login credentials

Since early 2024, ESET researchers have been tracking DeceptiveDevelopment, a series of malicious campaigns linked to North Korea-aligned operators. Disguising themselves as software development recruiters, these threat actors lure victims with fake jo… Continue reading Hackers pose as employers to steal crypto, login credentials

Russia-aligned threat groups dupe Ukrainian targets via Signal

Google researchers say multiple Russian state threat groups have conducted remote phishing operations to target and compromise Signal accounts.

The post Russia-aligned threat groups dupe Ukrainian targets via Signal appeared first on CyberScoop.

Continue reading Russia-aligned threat groups dupe Ukrainian targets via Signal

Edge device vulnerabilities fueled attack sprees in 2024

The most consequential cyberattacks observed by Darktrace last year were linked to software defects in firewalls and perimeter network technologies.

The post Edge device vulnerabilities fueled attack sprees in 2024 appeared first on CyberScoop.

Continue reading Edge device vulnerabilities fueled attack sprees in 2024

Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts

Suspected Russian nation-state threat groups have duped multiple victims into granting potentially persistent access to networks via authentication requests and valid tokens.

The post Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts appeared first on CyberScoop.

Continue reading Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts

Salt Typhoon remains active, hits more telecom networks via Cisco routers

The Chinese nation-state threat group intruded five additional telecom networks between December and January, including two unnamed providers in the U.S., Recorded Future researchers said.

The post Salt Typhoon remains active, hits more telecom networks via Cisco routers appeared first on CyberScoop.

Continue reading Salt Typhoon remains active, hits more telecom networks via Cisco routers

Russian state threat group shifts focus to US, UK targets

A subgroup of Seashell Blizzard exploited public vulnerabilities in internet-facing systems, Microsoft researchers said.

The post Russian state threat group shifts focus to US, UK targets appeared first on CyberScoop.

Continue reading Russian state threat group shifts focus to US, UK targets

IT Teams Worry About Increasing Cost of Cyber Tools From AI Features, While Criminals Barely Use Them

Most IT leaders believe generative AI will increase the cost of their security tools, according to Sophos research. But, by the looks of cyber crime forums, hackers are barely using AI. Continue reading IT Teams Worry About Increasing Cost of Cyber Tools From AI Features, While Criminals Barely Use Them