Tag: threat actor

Source URL: https://www.theregister.com/2025/01/09/japan_mirrorface_china_attack/ Source: The Register Title: Japanese Police claim China ran five-year cyberattack campaign Feedly Summary: ‘MirrorFace’ group found ways to run malware in the Windows sandbox, which is worrying Japan’s National Police Agency and Center of Incident Readiness and Strategy for Cybersecurity have confirmed third party reports of attacks on local orgs by…

Cloud Blog: Ivanti Connect Secure VPN Targeted in New Zero-Day Exploitation

Jan 9, 2025

—

by

Source URL: https://cloud.google.com/blog/topics/threat-intelligence/ivanti-connect-secure-vpn-zero-day/ Source: Cloud Blog Title: Ivanti Connect Secure VPN Targeted in New Zero-Day Exploitation Feedly Summary: Written by: John Wolfram, Josh Murchie, Matt Lin, Daniel Ainsworth, Robert Wallace, Dimiter Andonov, Dhanesh Kizhakkinan, Jacob Thompson Note: This is a developing campaign under active analysis by Mandiant and Ivanti. We will continue to add more…

Alerts: Ivanti Releases Security Updates for Connect Secure, Policy Secure, and ZTA Gateways

Jan 8, 2025

—

by

Source URL: https://www.cisa.gov/news-events/alerts/2025/01/08/ivanti-releases-security-updates-connect-secure-policy-secure-and-zta-gateways Source: Alerts Title: Ivanti Releases Security Updates for Connect Secure, Policy Secure, and ZTA Gateways Feedly Summary: Ivanti released security updates to address vulnerabilities (CVE-2025-0282, CVE-2025-0283) in Ivanti Connect Secure, Policy Secure, and ZTA Gateways. A cyber threat actor could exploit CVE-2025-0282 to take control of an affected system.CISA has added CVE-2025-0282…

The Register: Turbulence at UN aviation agency as probe into potential data theft begins

Jan 7, 2025

—

by

Source URL: https://www.theregister.com/2025/01/07/icao_data_theft_investigation/ Source: The Register Title: Turbulence at UN aviation agency as probe into potential data theft begins Feedly Summary: Crime forum-dweller claims to have leaked 42,000 documents packed with personal info The United Nations’ aviation agency is investigating “a potential information security incident" after a cybercriminal claimed they had laid hands on 42,000…

Wired: US Treasury Department Admits It Got Hacked by China

Dec 31, 2024

—

by

Source URL: https://www.wired.com/story/us-treasury-hacked-by-china/ Source: Wired Title: US Treasury Department Admits It Got Hacked by China Feedly Summary: Treasury says hackers accessed “certain unclassified documents” in a “major” breach, but experts believe the attack’s impacts could prove to be more significant as new details emerge. AI Summary and Description: Yes Summary: The US Treasury Department experienced…

Slashdot: US Treasury Says Chinese Hackers Stole Documents In ‘Major Incident’

Dec 30, 2024

—

by

Source URL: https://yro.slashdot.org/story/24/12/30/210242/us-treasury-says-chinese-hackers-stole-documents-in-major-incident Source: Slashdot Title: US Treasury Says Chinese Hackers Stole Documents In ‘Major Incident’ Feedly Summary: AI Summary and Description: Yes Summary: The text highlights a significant security breach involving Chinese state-sponsored hackers who infiltrated the U.S. Treasury Department, compromising sensitive documents through a third-party cybersecurity provider. This incident underscores the importance of…

The Register: It’s only a matter of time before LLMs jump start supply-chain attacks

Dec 29, 2024

—

by

Source URL: https://www.theregister.com/2024/12/29/llm_supply_chain_attacks/ Source: The Register Title: It’s only a matter of time before LLMs jump start supply-chain attacks Feedly Summary: ‘The greatest concern is with spear phishing and social engineering’ Interview Now that criminals have realized there’s no need to train their own LLMs for any nefarious purposes – it’s much cheaper and easier…

Hacker News: New ‘OtterCookie’ malware used to backdoor devs in fake job offers

Dec 29, 2024

—

by

Source URL: https://www.bleepingcomputer.com/news/security/new-ottercookie-malware-used-to-backdoor-devs-in-fake-job-offers/ Source: Hacker News Title: New ‘OtterCookie’ malware used to backdoor devs in fake job offers Feedly Summary: Comments AI Summary and Description: Yes Summary: The text outlines a cybersecurity threat posed by North Korean actors using new malware called OtterCookie in a campaign targeting software developers through fake job offers. It highlights…

Hacker News: Portspoof: Emulate a valid service on all 65535 TCP ports

Dec 25, 2024

—

by