#cyber-espionage

#cyber-espionage

US and UK imposed sanctions on China for cyber espionage campaign

China's state-backed groups APT 31 and APT 40 behind cyber-attacks

A new cyber espionage group, Liminal Panda, has targeted telecommunications entities in South Asia and Africa since 2020 for intelligence collection.

T-Mobile is monitoring an industry-wide cyber-espionage campaign linked to Chinese hackers, ensuring customer data remains secure.

Russia's malware tactics in Ukraine have intensified, with a reported 90% increase, adapting creatively to circumvent existing email protections.

Volt Typhoon exploited a significant vulnerability in Versa Director affecting multiple sectors, exploiting vulnerabilities in administration privileges.

The ongoing cyber espionage campaign by Volt Typhoon highlights the risks associated with unpatched systems, particularly in high-severity scenarios.

A new malware campaign uses Google Sheets as a command-and-control mechanism to target organizations globally via phishing emails.

Chinese-linked cyber espionage operation infiltrated Western governments, international organizations, and defense industry using a new remote access trojan named 'Coathanger.'

A little-known cyber espionage group XDSpy targeted companies in Russia and Moldova using phishing emails with malware like DSDownloader.

The FBI took down a botnet of SOHO routers used by Russia's GRU for cyber espionage purposes.

The GRU leveraged existing malware to repurpose the botnet and target US and foreign governments as well as corporate organizations.

Cyber-espionage groups are increasingly using ORB networks to hide their attacks and make attribution challenging.

MuddyWater, an Iranian cyber espionage group, has upgraded its malware to target Israeli organizations using phishing campaigns with a new backdoor named BugSleep.

A North Korea-backed cyber group, Andariel, has been stealing military and nuclear secrets globally.

The US Department of State offers $10 million reward for information on North Korean hacker Rim Jong Hyok and his group APT45's cyber activities, including targeting US hospitals and healthcare providers.

North Korean man indicted for cyber theft from US military bases, defense contractors, NASA, and Asian companies, revealing North Korea's cybercrime capabilities.

A new hacking group 'Moonstone Sleet' uses various deceptive tactics like fake job tests and a fake tank game to target software developers for espionage and financial gain.

North Korea-linked APT45 expanding into financially-motivated ransomware attacks.

APT45 frequently targets critical infrastructure and has a long history of cyber operations.

Military intelligence organizations like APT45 are increasingly involved in financially-motivated cybercrime.

Federal agencies running Ivanti Connect Secure or Ivanti Policy Secure devices must disconnect them due to cyber espionage linked to China.

CISA has issued instructions for updating and bringing the devices back online.

The UK needs to pay more attention to China's cyber-espionage tactics targeting critical infrastructure.

Cyber-attacks by Chinese intelligence agencies are escalating worldwide.

Analysts believe Chinese hackers aim to gather political, military, and commercial information through cyber-espionage.

APT40, a China-linked cyber espionage group, swiftly exploits new security flaws; targeted various countries since 2013, attributed to China's Ministry of State Security in 2021.

Cozy Bear, responsible for the SolarWinds attack, has expanded to target cloud environments and diversified victim categories.

Five Eyes governments issue a joint advisory warning of Cozy Bear expanding targets and methods, including targeting organizations via cloud services.

Russian state hackers are targeting organizations moving to the cloud, focusing on weaknesses in cloud services for initial access.

APT29, linked to Russia's Foreign Intelligence Service, is expanding its cyberattacks to various sectors and adapting techniques for cloud-based environments.

Iranian national indicted for cyber espionage

Spear phishing and hacking techniques used to compromise US targets

Moscow denies UK claims of a cyber-espionage campaign aimed at meddling in the next general election.

Two Russian operatives have been sanctioned for their involvement in spear-phishing campaigns.

German authorities helped shut down Russian espionage network

APT 28 conducted cyberattacks on German targets for GRU

German security authorities shut down a Russian espionage network with U.S. support.

APT 28 hackers targeted German plans for Ukraine using malware on routers.

German security authorities helped shut down a Russian espionage network targeting Ukraine plans.

APT 28 installed malware on routers for Russian military intelligence operations.

FBI dismantled a botnet of SOHO routers used by Russian GRU for malicious activities.

GRU repurposed Moobot malware created by cybercriminals to orchestrate cyber espionage activities globally.

The US government has disrupted a botnet used by Russia's GRU military intelligence unit for cyber espionage activities.

The botnet was composed of infected home and small business routers.