Nation-State - Security Ticks

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks

critical infrastructure, Iran, Israel, Malware & Threats, Nation-State, Unitronics / SecurityTicks

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks 2024-02-02 at 22:02 By Ryan Naraine The US government slaps sanctions against six Iranian government officials linked to cyberattacks against Israeli PLC vendor Unitronics. The post US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks appeared first on SecurityWeek. This […]

React to this headline:

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks Read More »

Cloudflare Hacked by Suspected State-Sponsored Threat Actor

Cloudflare, Featured, Nation-State / SecurityTicks

Cloudflare Hacked by Suspected State-Sponsored Threat Actor 2024-02-02 at 13:46 By Ionut Arghire A nation-state threat actor accessed internal Cloudflare systems using credentials stolen during the Okta hack. The post Cloudflare Hacked by Suspected State-Sponsored Threat Actor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Cloudflare Hacked by Suspected State-Sponsored Threat Actor Read More »

Watch: Top Cyber Officials Testify on China’s Cyber Threat to US Critical Infrastructure

Cyberwarfare, Nation-State, Uncategorized / SecurityTicks

Watch: Top Cyber Officials Testify on China’s Cyber Threat to US Critical Infrastructure 2024-02-01 at 18:01 By SecurityWeek News Video: Top US cyber officials testify on China’s cyber threat to U.S. national security and critical infrastrcuture. The post Watch: Top Cyber Officials Testify on China’s Cyber Threat to US Critical Infrastructure appeared first on SecurityWeek.

React to this headline:

Watch: Top Cyber Officials Testify on China’s Cyber Threat to US Critical Infrastructure Read More »

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon

Cisco, KV Botnet, Nation-State, Netgear, Network Security, Volt Typhoon / SecurityTicks

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon 2024-01-31 at 23:01 By Ryan Naraine The US government neutralizes a botnet full of end-of-life Cisco and Netgear routers being by a notorious Chinese APT group. The post US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon appeared first on

React to this headline:

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon Read More »

Ivanti Struggling to Hit Zero-Day Patch Release Schedule

CISA, CVE-2023-46805, CVE-2024-21887, Ivanti, Nation-State, Volexity, Vulnerabilities / SecurityTicks

Ivanti Struggling to Hit Zero-Day Patch Release Schedule 2024-01-29 at 22:15 By Ryan Naraine Ivanti is struggling to hit its own timeline for the delivery of patches for critical — and already exploited — flaws in its flagship VPN appliances. The post Ivanti Struggling to Hit Zero-Day Patch Release Schedule appeared first on SecurityWeek. This

React to this headline:

Ivanti Struggling to Hit Zero-Day Patch Release Schedule Read More »

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware

Blackwood, China, espionage, Malware, Malware & Threats, Nation-State / SecurityTicks

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware 2024-01-26 at 14:02 By Ionut Arghire The China-linked cyberespionage group Blackwood has been caught delivering malware to entities in China and Japan. The post Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware Read More »

HPE Says Russian Government Hackers Had Access to Emails for 6 Months

APT29, Email, email security, Featured, HPE, Nation-State, Russia / SecurityTicks

HPE Says Russian Government Hackers Had Access to Emails for 6 Months 2024-01-25 at 12:16 By Eduard Kovacs HPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months. The post HPE Says Russian Government Hackers Had Access to Emails for 6 Months appeared first on

React to this headline:

HPE Says Russian Government Hackers Had Access to Emails for 6 Months Read More »

Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021

China, China APT, exploited, Nation-State, VMWare, Vulnerabilities / SecurityTicks

Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021 2024-01-22 at 13:16 By Ionut Arghire CVE-2023-34048, a vCenter Server vulnerability patched in October 2023, had been exploited as zero-day for a year and a half. The post Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021 appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021 Read More »

Microsoft Says Russian Gov Hackers Stole Email Data from Senior Execs

APT29, Data Breaches, Featured, Microsoft, Nation-State, Nobelium, Russia / SecurityTicks

Microsoft Says Russian Gov Hackers Stole Email Data from Senior Execs 2024-01-20 at 01:17 By Ryan Naraine A Russian government-backed hacking team broke into Microsoft’s corporate network and stole emails and attachments from senior executives. The post Microsoft Says Russian Gov Hackers Stole Email Data from Senior Execs appeared first on SecurityWeek. This article is

React to this headline:

Microsoft Says Russian Gov Hackers Stole Email Data from Senior Execs Read More »

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks

Iran, Malware & Threats, Microsoft, Mint Sandstorm, Nation-State / SecurityTicks

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks 2024-01-17 at 20:31 By Ryan Naraine Microsoft says an APT with links to Iran’s military intelligence is impersonating a prominent journalist in clever spear-phishing attacks. The post Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks appeared first on SecurityWeek. This article is an

React to this headline:

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks Read More »

Volexity Catches Chinese Hackers Exploiting Ivanti VPN Zero-Days

Ivanti, Nation-State, Volexity, VPN, Vulnerabilities, Zero-Day / SecurityTicks

Volexity Catches Chinese Hackers Exploiting Ivanti VPN Zero-Days 2024-01-11 at 00:01 By Ryan Naraine Ivanti confirms active zero-day exploits, ships pre-patch mitigations, but says comprehensive fixes won’t be available until January 22. The post Volexity Catches Chinese Hackers Exploiting Ivanti VPN Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Volexity Catches Chinese Hackers Exploiting Ivanti VPN Zero-Days Read More »

Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet

Black Lotus Labs, Featured, Fortinet, Nation-State, Netgear, Network Security, Volt Typhoon / SecurityTicks

Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet 13/12/2023 at 20:31 By Ryan Naraine Malware hunters have set eyes on an impossible to kill botnet packed with end-of-life SOHO routers and connects it to a Chinese APT targeting US critical infrastructure. The post Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet

React to this headline:

Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet Read More »

Apple Sets Trap to Catch iMessage Impersonators

Featured, iMessage, iOS 17.2, macOS 14.2, Mobile & Wireless, Nation-State, nso group, Zero-Day / SecurityTicks

Apple Sets Trap to Catch iMessage Impersonators 12/12/2023 at 20:33 By Ryan Naraine New iMessage Contact Key Verification feature in Apple’s iOS and macOS platforms help catch impersonators on its iMessage service. The post Apple Sets Trap to Catch iMessage Impersonators appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Apple Sets Trap to Catch iMessage Impersonators Read More »

CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation

CISA, Cyberwarfare, email security, Microsoft, Nation-State, Russia, Star Blizzard, Threat Intelligence / SecurityTicks

CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation 08/12/2023 at 00:48 By Ryan Naraine The US cybersecurity agency calls attention to a Russian APT targeting academia, defense, governmental organizations, NGOs and think-tanks. The post CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation appeared first on SecurityWeek. This article is an excerpt

React to this headline:

CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation Read More »

North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report

Cryptocurrency, cybercrime, Data Breaches, Kimsuky, Lazarus, Nation-State, North Korea, Threat Intelligence / SecurityTicks

North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report 04/12/2023 at 18:16 By Ionut Arghire Recorded Future calculates that North Korean state-sponsored threat actors are believed to have stolen more than $3 billion in cryptocurrency. The post North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report appeared first on SecurityWeek. This

React to this headline:

North Korean Hackers Have Stolen Over $3 Billion in Cryptocurrency: Report Read More »

State-Backed Hackers a Threat to Australia, Agency Warns

Australia, Nation-State, Threat Intelligence / SecurityTicks

State-Backed Hackers a Threat to Australia, Agency Warns 15/11/2023 at 13:46 By AFP The AUKUS partnership, with its focus on nuclear submarines and other advanced military capabilities, is likely a target for state actors looking to steal intellectual property. The post State-Backed Hackers a Threat to Australia, Agency Warns appeared first on SecurityWeek. This article

React to this headline:

State-Backed Hackers a Threat to Australia, Agency Warns Read More »

Russian Hackers Used Novel OT Attack to Disrupt Ukrainian Power Amid Mass Missile Strikes

Cyberwarfare, Featured, ICS, ICS malware, ICS/OT, Malware & Threats, Mandiant, Nation-State, OT, Russia, Sandworm, Ukraine / SecurityTicks

Russian Hackers Used Novel OT Attack to Disrupt Ukrainian Power Amid Mass Missile Strikes 09/11/2023 at 12:16 By Ryan Naraine Mandiant says Russia’s Sandworm hackers used a novel OT attack to cause power outages that coincided with mass missile strikes on critical infrastructure across Ukraine. The post Russian Hackers Used Novel OT Attack to Disrupt

React to this headline:

Russian Hackers Used Novel OT Attack to Disrupt Ukrainian Power Amid Mass Missile Strikes Read More »

New MacOS Malware Linked to North Korean Hackers

macOS, Malware, Malware & Threats, Nation-State, North Korea / SecurityTicks

New MacOS Malware Linked to North Korean Hackers 07/11/2023 at 18:04 By Kevin Townsend New macOS malware, tracked by Jamf as ObjCShellz, is likely being used by North Korean hackers to target crypto exchanges The post New MacOS Malware Linked to North Korean Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

New MacOS Malware Linked to North Korean Hackers Read More »

Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks

Check Point, Cyberwarfare, Iran, Israel, LionTail, Malware & Threats, Nation-State, Scarred Manticore / SecurityTicks

Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks 01/11/2023 at 17:31 By Ionut Arghire Check Point reports that an Iranian APT has been observed using a new malware framework in targeted attacks in the Middle East. The post Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks appeared first on SecurityWeek. This article is

React to this headline:

Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks Read More »

Canada Bans WeChat and Kaspersky on Government Phones

Canada, Nation-State, Privacy / SecurityTicks

Canada Bans WeChat and Kaspersky on Government Phones 30/10/2023 at 22:01 By AFP The Chief Information Officer of Canada determined that WeChat and Kaspersky applications present an unacceptable level of risk to privacy and security. The post Canada Bans WeChat and Kaspersky on Government Phones appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Canada Bans WeChat and Kaspersky on Government Phones Read More »