German political party targeted by SVR-linked group in spearphishing campaign, Mandiant says

The group may have been seeking insights on shifting European sentiments on Ukraine, threat analysts suggest.

The post German political party targeted by SVR-linked group in spearphishing campaign, Mandiant says appeared first on CyberScoop.

Continue reading German political party targeted by SVR-linked group in spearphishing campaign, Mandiant says

Kaspersky’s Advanced Persistent Threats Predictions for 2024

New botnets, more AI in spearphishing and increases in hack-for-hire business are some of Kaspersky’s security predictions. Get extensive APT mitigation tips, too. Continue reading Kaspersky’s Advanced Persistent Threats Predictions for 2024

New Netskope Report Exposes Increasing Use of Cloud Apps to Spread Malware

Microsoft OneDrive accounts for 26% of the overall usage of cloud storage apps to host malware, ahead of Microsoft PowerPoint and GitHub. Continue reading New Netskope Report Exposes Increasing Use of Cloud Apps to Spread Malware

Check Point: Hackers Dropping Physical USB Drives at Watering Holes

Check Point’s Global CISO discusses the firm’s 2023 threat intelligence, including new AI malice and threat actors spreading malware by dropping flash drives. Continue reading Check Point: Hackers Dropping Physical USB Drives at Watering Holes

Spearphishing report: 50% of companies were impacted in 2022

Barracuda Networks found that spearphishing exploits last year worked to great effect and took days to detect.
The post Spearphishing report: 50% of companies were impacted in 2022 appeared first on TechRepublic.
Continue reading Spearphishing report: 50% of companies were impacted in 2022

Iran-linked hackers used fake Atlantic Council-affiliated persona to target human rights researchers

A persona dubbed Sara Shokouhi recycled photos of a Russian psychologist and tarot card reader to pose as a Middle East-focused researcher

The post Iran-linked hackers used fake Atlantic Council-affiliated persona to target human rights researchers appeared first on CyberScoop.

Continue reading Iran-linked hackers used fake Atlantic Council-affiliated persona to target human rights researchers

Phishing scheme targeting Mideast researchers uses ‘herd mentality’ approach to dupe victims

The tactic linked to an Iranian group creates the impression the email activity is real by employing a phenomenon known as “social proof.”

The post Phishing scheme targeting Mideast researchers uses ‘herd mentality’ approach to dupe victims appeared first on CyberScoop.

Continue reading Phishing scheme targeting Mideast researchers uses ‘herd mentality’ approach to dupe victims

Russian hacking unit Cozy Bear adds Google Drive to its arsenal, researchers say

APT29, one of the SVR’s most active and successful hacking groups, has been using the cloud service to help deliver malware, the researchers said.

The post Russian hacking unit Cozy Bear adds Google Drive to its arsenal, researchers say appeared first on CyberScoop.

Continue reading Russian hacking unit Cozy Bear adds Google Drive to its arsenal, researchers say

Hacking group accidentally infects itself with Remote Access Trojan horse

Patchwork, an Indian hacking group also known by such bizarre names as Hangover Group, Dropping Elephant, Chinastrats, and Monsoon, has proven the old adage that to err is human, but to really cock things up you need to be a cybercriminal. Continue reading Hacking group accidentally infects itself with Remote Access Trojan horse