Tag: state-sponsored cyber threats
-
The Register: Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid
Source URL: https://www.theregister.com/2025/01/02/chinese_spies_targeted_sanctions_intel/ Source: The Register Title: Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid Feedly Summary: OFAC, Office of the Treasury Secretary feared hit in data-snarfing swoop Chinese spies who compromised the US Treasury Department’s workstations reportedly stole data belonging to a government office responsible for sanctions against organizations and individuals.… AI…
-
Slashdot: Chinese Hacker Singlehandedly Responsible For Exploiting 81,000 Sophos Firewalls, DOJ Says
Source URL: https://it.slashdot.org/story/24/12/17/1745239/chinese-hacker-singlehandedly-responsible-for-exploiting-81000-sophos-firewalls-doj-says?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Chinese Hacker Singlehandedly Responsible For Exploiting 81,000 Sophos Firewalls, DOJ Says Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a significant cybersecurity incident involving a Chinese hacker and the associated compromising of firewalls that protect US critical infrastructure. The indictment highlights the escalation of cyber threats…
-
The Register: Iran-linked crew used custom ‘cyberweapon’ in US critical infrastructure attacks
Source URL: https://www.theregister.com/2024/12/13/iran_cyberweapon_us_attacks/ Source: The Register Title: Iran-linked crew used custom ‘cyberweapon’ in US critical infrastructure attacks Feedly Summary: IOCONTROL targets IoT and OT devices from a ton of makers, apparently An Iranian government-linked cybercriminal crew used custom malware called IOCONTROL to attack and remotely control US and Israel-based water and fuel management systems, according…
-
Microsoft Security Blog: Frequent freeloader part I: Secret Blizzard compromising Storm-0156 infrastructure for espionage
Source URL: https://www.microsoft.com/en-us/security/blog/2024/12/04/frequent-freeloader-part-i-secret-blizzard-compromising-storm-0156-infrastructure-for-espionage/ Source: Microsoft Security Blog Title: Frequent freeloader part I: Secret Blizzard compromising Storm-0156 infrastructure for espionage Feedly Summary: Microsoft has observed Secret Blizzard compromising the infrastructure and backdoors of the Pakistan-based threat actor we track as Storm-0156 for espionage against the Afghanistan government and Indian Army targets. The post Frequent freeloader part…
-
Slashdot: Apple Says Mac Users Targeted in Zero-Day Cyberattacks
Source URL: https://it.slashdot.org/story/24/11/20/181206/apple-says-mac-users-targeted-in-zero-day-cyberattacks?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Apple Says Mac Users Targeted in Zero-Day Cyberattacks Feedly Summary: AI Summary and Description: Yes Summary: Apple’s recent security updates address critical zero-day vulnerabilities affecting Intel-based Mac systems that were under active attack, highlighting the importance of timely patch management and awareness of state-sponsored cyber threats. Detailed Description: Apple’s…
-
The Register: T-Mobile US ‘monitoring’ China’s ‘industry-wide attack’ amid fresh security breach fears
Source URL: https://www.theregister.com/2024/11/18/tmobile_us_attack_salt_typhoon/ Source: The Register Title: T-Mobile US ‘monitoring’ China’s ‘industry-wide attack’ amid fresh security breach fears Feedly Summary: Un-carrier said to be among those hit by Salt Typhoon, including AT&T, Verizon T-Mobile US said it is “monitoring" an "industry-wide" cyber-espionage campaign against American networks – amid fears Chinese government-backed spies compromised the un-carrier…
-
The Register: China’s Volt Typhoon crew and its botnet surge back with a vengeance
Source URL: https://www.theregister.com/2024/11/13/china_volt_typhoon_back/ Source: The Register Title: China’s Volt Typhoon crew and its botnet surge back with a vengeance Feedly Summary: Ohm, for flux sake China’s Volt Typhoon crew and its botnet are back, compromising old Cisco routers once again to break into critical infrastructure networks and kick off cyberattacks, according to security researchers.… AI…
-
The Register: Anonymous Sudan isn’t any more: two alleged operators named, charged
Source URL: https://www.theregister.com/2024/10/17/anonymous_sudan_arrests_charges/ Source: The Register Title: Anonymous Sudan isn’t any more: two alleged operators named, charged Feedly Summary: Gang said to have developed its evilware on GitHub – then DDoSed GitHub Hacktivist gang Anonymous Sudan appears to have lost its anonymity after the US Attorney’s Office on Wednesday unsealed an indictment identifying two of…