Google details Coruna, an exploit kit used to hijack iPhones via malicious websites; iVerify suggests it may have been originally built for the US government
A highly sophisticated set of iPhone hijacking techniques has likely infected tens of thousands of phones or more.
Google says it took legal action to take down dozens of domains and disrupt the residential proxy network of Chinese company Ipidea, widely used by bad actors
Company targets global network employed by hackers that often use devices running in homes of everyday Americans
Google says North Korea hackers are using “EtherHiding” to embed malware on blockchains, the first time it has seen a nation-state threat actor using the method
North Korean hackers have adopted the ‘EtherHiding’ technique that leverages smart contracts to host and deliver malware …
Google says threat actors are breaching fully patched, end-of-life cybersecurity company SonicWall's appliances and stealing sensitive data from organizations
Threat actors are stealing sensitive data from organizations by breaching end-of-life appliances made by cybersecurity company SonicWall.
Google researchers say DPRK's IT workers are fraudulently securing remote roles at companies in Germany, Portugal, and the UK, after facing sanctions in the US
North Korea's IT workers have expanded operations beyond the United States and are now increasingly targeting organizations across Europe.
Fortinet discloses a critical FortiManager API flaw being exploited in 0-day attacks to steal sensitive files, after warning customers privately over a week ago
Fortinet publicly disclosed today a critical FortiManager API vulnerability, tracked as CVE-2024-47575, that was exploited …
The US DOJ indicts a North Korean hacker, still at large, for his alleged role in the Andariel group's cyberattacks on US hospitals, NASA, and military bases
Associated Press :
Google Cloud unveils Google Threat Intelligence, which uses Gemini and combines insights from Mandiant, VirusTotal, and Google to provide faster protection
Launched at RSAC 2024, the new Google Threat Intelligence offering provides faster protection against threats by combining insights from Mandiant …
Mandiant: the use of AI to conduct politically-motivated online influence campaigns has grown in recent years, but the impact of such campaigns has been limited
Google-owned U.S. cybersecurity firm Mandiant said on Thursday it had seen increasing use of artificial intelligence (AI) …
Rapid7 and Mandiant: hackers are actively exploiting a zero-day vulnerability in Progress' MOVEit Transfer file transfer tool to steal data from organizations
Hackers are actively exploiting a zero-day vulnerability in the MOVEit Transfer file transfer software, tracked as CVE-2023-34362, to steal data from organizations.
The Biden administration issues a national cybersecurity strategy, seeking to impose minimum standards, shift responsibility to larger software makers, and more
CyberScoop :
Mandiant: one-third of all hacker groups exploiting zero-days in 2021 were financially motivated criminals as opposed to government-backed cyberespionage groups
Patrick Howell O'Neill / MIT Technology Review :
Mandiant: one-third of all hacker groups exploiting zero-days in 2021 were financially motivated criminals as opposed to government-backed cyberespionage groups
The most valuable hacking tools were once the domain of governments. Not anymore. — Organized cybercriminals with money …
US government agencies warn of new custom tools, created by several APT actors, that are capable of compromising IT equipment used in critical infrastructure
Several advanced persistent threat (APT) actors have created custom-made tools designed to breach IT equipment used … Source: CISA .
Mandiant and CrowdStrike partner to help customers investigate and mitigate threats; Mandiant will begin deploying CrowdStrike's tools
Joseph Menn / Washington Post :
The DOJ charges four Russian officials for alleged hacking campaigns from 2012 to 2018 on critical US infrastructure, including a Kansas nuclear power plant
Saturday, March 26, 2022 // (IG): BB //Weekly Sponsor: DiyGarage SoCal Gary Warner / CyberCrime & Doing Time : Russia's Invasion of Ukraine and CISA/FBI's New Era of Transparency C...
The White House again warns that Russia may expand cyberattacks against the US, citing “evolving intelligence that the Russian Government is exploring options”
This is a critical moment to accelerate our work to improve domestic cybersecurity and bolster our national resilience.
Google plans to acquire cybersecurity company Mandiant for around $5.4B, or $23 per share, with the deal closing later in 2022; Mandiant will join Google Cloud
Acquisition to bring Google speed and scale to Mandiant's unparalleled intelligence and expertise - at a time when security has never been more important
Cybersecurity firm Mandiant says it has “high confidence” that Belarus is partially responsible for Ghostwriter, a hack-and-leak operation in some EU states
Mandiant says the government is likely to blame for anti-NATO campaigns, and more. — The Belarusian government … Source: Mandiant .
Sources: at least 30K US organizations have been hacked by an aggressive Chinese espionage group exploiting unpatched flaws in Microsoft's Exchange Server
At least 30,000 organizations across the United States — including a significant number of small businesses, towns …