Singapore blames China-backed hacking group UNC3886 for an 11+ months-long cyber-espionage campaign that targeted its four largest telecommunication companies
Singapore's government has blamed a known Chinese cyber-espionage group for targeting four of its top telecommunication companies as part of a months-long attack.
Researchers warn that open-source Go serialization tool easyjson, owned by Russia's VK Group and used by the US DOD and others, poses a national security risk
The open source software easyjson is used by the US government and American companies. But its ties to Russia's VK …
Signal updates its app with phishing protections after Google warned Russia-linked hackers are using fake QR codes for group invites to trick Ukrainian soldiers
Google warns that hackers tied to Russia are tricking Ukrainian soldiers with fake QR codes for Signal group invites that let spies steal their messages.
Europol says police in Germany, the UK, the US, and others took down botnets spreading ransomware via infected emails, arrested four, and seized 2,000+ domains
Police coordinated by the European Union's justice and police agencies have taken down computer networks responsible …
Experts say Spamouflage Dragon, China's yearslong disinformation campaign targeting the US, has largely failed due to China missing cultural context and more
but no one is looking at it. https://www.wired.com/... @WIRED Tori Elliott / @telliotter : There's a lot of talk about China's disinfo/propaganda efforts, but turns out... they're ...
Mandiant links hacktivist group Cyber Army of Russia, which claimed to target utilities in France, the US, and Poland, to Russia-linked hacking group Sandworm
Cyber Army of Russia Reborn, a group with ties to the Kremlin's Sandworm unit, is crossing lines even that notorious cyberwarfare unit wouldn't dare to.
Microsoft warns that China plans to disrupt US, South Korean, and Indian elections in 2024 with AI-generated content, after using Taiwan's election as a dry run
Dan Milmo / The Guardian :
As China-linked Bitcoin mines open across the US, officials raise national security concerns, like about a Wyoming mine that is close to a nuclear missile base
Microsoft reported one site in Wyoming because of its proximity to a data center and nuclear missile base.
Trend Micro: Chinese cyberespionage group Earth Lusca used a new Linux malware dubbed SprySOCKS to target government agencies in multiple countries in H1 2023
A Chinese espionage-focused hacker tracked as ‘Earth Lusca’ was observed targeting government agencies in multiple countries, using a new Linux backdoor dubbed ‘SprySOCKS.’
Researchers: Iran's cyber army, or Cyberi, ramped up spear-phishing and adopted new tactics aiming to sow distrust among citizens as political unrest continues
Arian Khameneh / Wired :
The FBI says North Korea-backed hacking groups Lazarus and APT38 are behind the June 2022 theft of ~$100M in ETH, USDT, and wBTC from Harmony's Horizon bridge
Lazarus Group and APT38, both associated with North Korea, are responsible for the attack in June, the agency concluded.
An investigation details Twitter's business in China: local governments and state media buying ads, a growing non-US revenue stream, internal tensions, and more
Even as China bars 1.4 billion citizens from Twitter, its local authorities are splurging on global advertising on the site … Tweets: @niubi , @mattnavarra , @780thc , @olivertheyo...
How the North Atlantic Fellas Organization, or NAFO, a group of national security experts and ordinary Twitter users, is using memes to fight Russian propaganda
Ivana Stradner opened her iPhone and typed a simple call-to-arms: Unleash the hounds. — A Washington think-tanker and an expert … Tweets: @780thc and @jmichaelwaller Tweets: @780...
Russia has been rerouting internet traffic in occupied Ukrainian territories through domestic networks since June, blocking uncensored information and services
New York Times :
Mandiant: Russia-based cybercriminal group Evil Corp has shifted to a ransomware-as-a-service model to evade December 2019 US sanctions for its Dridex malware
Conti urges Costa Rican citizens to pressure their government to pay a ransom, now doubled to $20M, and says it is “determined to overthrow the government”
AdvIntel: the Conti ransomware group has taken its infrastructure offline and its leaders have partnered with other smaller ransomware groups to conduct attacks
The notorious Conti ransomware gang has officially shut down their operation, with infrastructure taken offline and team leaders told that the brand is no more.
The UK and EU say Russia launched a cyberattack on satellite internet network Viasat at the onset of the Ukraine war in late February, affecting many in Ukraine
Russia was behind a massive cyberattack against a satellite internet network which took thousands of modems offline at the onset … Source: GOV.UK and European Council .
Cybereason: China-linked Winnti APT exfiltrated hundreds of GBs of IP in a cyber campaign targeting ~30 companies in North America, Europe, and Asia since 2019
A yearslong malicious cyber operation spearheaded by the notorious Chinese state actor, APT 41, has siphoned off an estimated trillions … Source: Cybereason .
Ukraine, its allies, and hactivists have made public hundreds of gigabytes of files and millions of emails on the Russian state, including doxing Russian troops
Ukraine claims to have doxed Russian troops and spies, while' hacktivists are regularly leaking private information from Russian organizations. Tweets: @findingveracity and @780thc...