Kaspersky’s Advanced Persistent Threats Predictions for 2024
New botnets, more AI in spearphishing and increases in hack-for-hire business are some of Kaspersky’s security predictions. Get extensive APT mitigation tips, too.
cyberespionage
Google Cloud’s Cybersecurity Trends to Watch in 2024 Include Generative AI-Based Attacks
A November report from Google Cloud details possible nation-state malware tactics in 2024 and new angles of cyberattacks.
Chinese APT Posing as Cloud Services to Spy on Cambodian Government
By Deeba Ahmed
Palo Alto’s Unit 42 Reveals Chinese APT Spying on 24 Cambodian Government Entities as Part of Long-Term Cyberespionage.
This is a post from HackRead.com Read the original post: Chinese APT Posing as Cloud Services to Spy on Cambodian Gov…
Canada Bans Kaspersky, WeChat On Govt Devices Suspecting Spying
The Government of Canada officially bans using WeChat and Kaspersky apps on government devices, citing…
Canada Bans Kaspersky, WeChat On Govt Devices Suspecting Spying on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Te…
New Cyberattack From Winter Vivern Exploits a Zero-Day Vulnerability in Roundcube Webmail
After reading the technical details about this zero-day that targeted governmental entities and a think tank in Europe and learning about the Winter Vivern threat actor, get tips on mitigating this cybersecurity attack.
Winter Vivern APT exploited zero-day in Roundcube webmail software in recent attacks
Russia-linked threat actor Winter Vivern has been observed exploiting a zero-day flaw in Roundcube webmail software. Russian APT group Winter Vivern (aka TA473) has been observed exploiting a zero-day flaw in Roundcube webmail software on October 11, 2023. ESET researchers pointed out that is a different vulnerability than CVE-2020-35730, that the group exploited in other attacks. The Winter […]
The post Winter Vivern APT exploited zero-day in Roundcube webmail software in recent attacks appeared first on Security Affairs.
MI5 chief warns of Chinese cyber espionage reached an unprecedented scale
MI5 chief warns Chinese cyber espionage reached an epic scale, more than 20,000 people in the UK have now been targeted. The head of MI5, Ken McCallum, warns that Chinese spies targeted more than 20,000 people in the UK. During a meeting of security chiefs of the Five Eyes alliance held in California, McCallum told […]
The post MI5 chief warns of Chinese cyber espionage reached an unprecedented scale appeared first on Security Affairs.
The attack on the International Criminal Court was targeted and sophisticated
The International Criminal Court revealed the recent attack was carried out by a threat actor for espionage purposes. The International Criminal Court shared additional information about the cyberattack that hit the organizations in September. In September, the International Criminal Court (ICC) announced that threat actors have breached its systems last week. The experts at the […]
The post The attack on the International Criminal Court was targeted and sophisticated appeared first on Security Affairs.
Chinese threat actors stole around 60,000 emails from US State Department in Microsoft breach
China-linked threat actors stole around 60,000 emails from U.S. State Department after breaching Microsoft’s Exchange email platform in May. China-linked hackers who breached Microsoft’s email platform in May have stolen tens of thousands of emails from U.S. State Department accounts, a Senate staffer told Reuters this week. During a briefing by U.S. State Department IT officials, […]
The post Chinese threat actors stole around 60,000 emails from US State Department in Microsoft breach appeared first on Security Affairs.
A phishing campaign targets Ukrainian military entities with drone manual lures
A phishing campaign targets Ukrainian military entities using drone manuals as lures to deliver the post-exploitation toolkit Merlin. Securonix researchers recently uncovered a phishing campaign using a Pilot-in-Command (PIC) Drone manual document as a lure to deliver a toolkit dubbed Merlin. The campaign, codenamed STARK#VORTEX by Securonix, targets Ukrainian military entities and CERT-UA attributed it […]
The post A phishing campaign targets Ukrainian military entities with drone manual lures appeared first on Security Affairs.