Number of Russian spies in U.S. ‘way too big,’ FBI director says
While it may seem like a relic of the past, Russian spies are still very much a presence in the U.S., the FBI’s director warned Thursday.
Intelligence
Chinese cyberspies obtained Microsoft signing key from Windows crash dump due to a mistake
Microsoft revealed that the Chinese group Storm-0558 stole a signing key used to breach government email accounts from a Windows crash dump. In July, Microsoft announced it had mitigated an attack conducted by a China-linked threat actor, tracked as Storm-0558, which targeted customer emails. Storm-0558 threat actors focus on government agencies in Western Europe and […]
The post Chinese cyberspies obtained Microsoft signing key from Windows crash dump due to a mistake appeared first on Security Affairs.
Meta disrupted two influence campaigns from China and Russia
Meta disrupted two influence campaigns orchestrated by China and Russia, the company blocked thousands of accounts and pages. Meta announced it has taken down two of the largest known covert influence operations originating from China and Russia. The social network giant revealed it has blocked thousands of accounts and pages across its platform. The company […]
The post Meta disrupted two influence campaigns from China and Russia appeared first on Security Affairs.
North Korea-linked APT Labyrinth Chollima behind PyPI supply chain attacks
ReversingLabs researchers linked the VMConnect campaign to the North Korea-linked APT group Labyrinth Chollima. ReversingLabs researchers believe that the North Korea-linked APT group Labyrinth Chollima is behind the VMConnect campaign. Threat actors uploaded a series of malicious packages to the PyPI (Python Package Index) repository, including a rogue package posing as the VMware vSphere connector […]
The post North Korea-linked APT Labyrinth Chollima behind PyPI supply chain attacks appeared first on Security Affairs.
Russia-linked hackers target Ukrainian military with Infamous Chisel Android malware
Russia-linked threat actors have been targeting Android devices of the Ukrainian military with a new malware dubbed Infamous Chisel. GCHQ’s National Cyber Security Centre and international partners reported that Russia-linked threat actors are using a new malware to target the Ukrainian military Government experts attribute the attack to the Russian military intelligence service the GRU. […]
The post Russia-linked hackers target Ukrainian military with Infamous Chisel Android malware appeared first on Security Affairs.
Chinese GREF APT distributes spyware via trojanized Signal and Telegram apps on Google Play and Samsung Galaxy stores
China-linked APT group GREF is behind a malware campaign distributing spyware via trojanized Signal and Telegram apps on Google Play ESET researchers uncovered a cyberespionage campaign carried out by the China-linked APT group known as GREF that is distributing spyware via trojanized Signal and Telegram apps on Google Play and Samsung Galaxy stores. The malware […]
The post Chinese GREF APT distributes spyware via trojanized Signal and Telegram apps on Google Play and Samsung Galaxy stores appeared first on Security Affairs.
No service can fight on its own: JADC2 demands move from self-sufficiency to interdependency
Making all-domain operations a warfighting capability means integrating, fusing, and disseminating a sensor picture appropriate for a particular theater segment, not all of them, says the Mitchell Institute’s David Deptula.
Hackers infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for months
Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) has been infiltrated for months. Threat actors have infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for as much as nine months. The intruders China-linked hackers may have gained access to sensitive data, according to three government and private sector […]
The post Hackers infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for months appeared first on Security Affairs.
FBI identifies wallets holding cryptocurrency funds stolen by North Korea
The U.S. FBI warned that North Korea-linked threat actors may attempt to cash out stolen cryptocurrency worth more than $40 million. The Federal Bureau of Investigation shared details about the activity of six cryptocurrency wallets operated by North Korea-linked threat actors. The wallets hold roughly 1,580 Bitcoin (roughly $41 million at the current rate) that […]
The post FBI identifies wallets holding cryptocurrency funds stolen by North Korea appeared first on Security Affairs.
Carderbee APT targets Hong Kong orgs via supply chain attacks
A previously unknown APT group, tracked as Carderbee, was behind a supply chain attack against Hong Kong organizations. Symantec Threat Hunter Team reported that a previously unknown APT group, tracked as Carderbee, used a malware-laced version of the legitimate Cobra DocGuard software to carry out a supply chain attack aimed at organizations in Hong Kong. […]
The post Carderbee APT targets Hong Kong orgs via supply chain attacks appeared first on Security Affairs.