espionage – Experimental News Clipping Site

The Register: Chinese snoops use stealth RAT to backdoor US orgs – still active last week

Apr 15, 2025

—

by

Source URL: https://www.theregister.com/2025/04/15/chinese_spies_backdoored_us_orgs/ Source: The Register Title: Chinese snoops use stealth RAT to backdoor US orgs – still active last week Feedly Summary: Let the espionage and access resale campaigns begin (again) A cyberspy crew or individual with ties to China’s Ministry of State Security has infected global organizations with a remote access trojan (RAT)…

Slashdot: Wi-Fi Giant TP-Link’s US Future Hinges on Its Claimed Split From China

Apr 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://slashdot.org/story/25/04/11/2050255/wi-fi-giant-tp-links-us-future-hinges-on-its-claimed-split-from-china?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Wi-Fi Giant TP-Link’s US Future Hinges on Its Claimed Split From China Feedly Summary: AI Summary and Description: Yes Summary: The text discusses U.S. investigations into TP-Link, a major Wi-Fi router manufacturer with ties to China, amid concerns about national security and cyber attacks from state-sponsored actors. It highlights…

Slashdot: Hackers Spied on 100 US Bank Regulators’ Emails for Over a Year

Apr 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://news.slashdot.org/story/25/04/09/0034251/hackers-spied-on-100-us-bank-regulators-emails-for-over-a-year?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Hackers Spied on 100 US Bank Regulators’ Emails for Over a Year Feedly Summary: AI Summary and Description: Yes Summary: The incident involving hackers intercepting emails from bank regulators highlights significant vulnerabilities in information security within financial institutions. This breach has far-reaching implications for public confidence and emphasizes the…

ISC2 Think Tank: DeepSeek Deep Dive: Uncovering the Opportunities and Risks

Apr 8, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.brighttalk.com/webcast/5385/638002 Source: ISC2 Think Tank Title: DeepSeek Deep Dive: Uncovering the Opportunities and Risks Feedly Summary: In January 2025, the Chinese open-source artificial intelligence tool DeepSeek caused huge ripples in the AI market, granting user organizations affordable access to powerful LLMs. While this industry-disrupting innovation is indicative of the myriad opportunities that open-source…

Schneier on Security: Arguing Against CALEA

Apr 8, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.schneier.com/blog/archives/2025/04/arguing-against-calea.html Source: Schneier on Security Title: Arguing Against CALEA Feedly Summary: At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms to make phone calls wiretappable, is outdated in today’s threat environment and should be rethought: In other words, while the legally-mandated CALEA…

Cloud Blog: Windows Remote Desktop Protocol: Remote to Rogue

Apr 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/windows-rogue-remote-desktop-protocol/ Source: Cloud Blog Title: Windows Remote Desktop Protocol: Remote to Rogue Feedly Summary: Written by: Rohit Nambiar Executive Summary In October 2024, Google Threat Intelligence Group (GTIG) observed a novel phishing campaign targeting European government and military organizations that was attributed to a suspected Russia-nexus espionage actor we track as UNC5837. The…

The Register: Suspected Chinese spies right now hijacking buggy Ivanti gear – for third time in 3 years

Apr 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/04/03/suspected_chines_snoops_hijacked_buggy/ Source: The Register Title: Suspected Chinese spies right now hijacking buggy Ivanti gear – for third time in 3 years Feedly Summary: Simple denial-of-service blunder turned out to be a remote unauth code exec disaster Suspected Chinese government spies have been exploiting a newly disclosed critical bug in Ivanti VPN appliances since…

Cloud Blog: Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457)

Apr 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/china-nexus-exploiting-critical-ivanti-vulnerability/ Source: Cloud Blog Title: Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457) Feedly Summary: Written by: John Wolfram, Michael Edie, Jacob Thompson, Matt Lin, Josh Murchie On Thursday, April 3, 2025, Ivanti disclosed a critical security vulnerability, CVE-2025-22457, impacting Ivanti Connect Secure (“ICS”) VPN appliances version 22.7R2.5 and…

The Register: Why is someone mass-scanning Juniper and Palo Alto Networks products?

Apr 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/04/03/unknown_scanners_probing_juniper_paloalto/ Source: The Register Title: Why is someone mass-scanning Juniper and Palo Alto Networks products? Feedly Summary: Espionage? Botnets? Trying to exploit a zero-day? Someone or something is probing devices made by Juniper Networks and Palo Alto Networks, and researchers think it could be evidence of espionage attempts, attempts to build a botnet,…

Cloud Blog: DPRK IT Workers Expanding in Scope and Scale

Apr 1, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/dprk-it-workers-expanding-scope-scale/ Source: Cloud Blog Title: DPRK IT Workers Expanding in Scope and Scale Feedly Summary: Written by: Jamie Collier Since our September 2024 report outlining the Democratic People’s Republic of Korea (DPRK) IT worker threat, the scope and scale of their operations has continued to expand. These individuals pose as legitimate remote workers…

Tag: espionage