Nation-State

Iranian Hackers Target Aviation and Defense Sectors in Middle East

Nation-State /

Iranian Hackers Target Aviation and Defense Sectors in Middle East 2024-02-29 at 16:34 By Ionut Arghire An Iranian threat actor tracked as UNC1549 is abusing Azure infrastructure in attacks targeting organizations in the Middle East. The post Iranian Hackers Target Aviation and Defense Sectors in Middle East appeared first on SecurityWeek. This article is an […]

React to this headline:

Loading spinner

Iranian Hackers Target Aviation and Defense Sectors in Middle East Read More »

Chinese Cyberspies Use New Malware in Ivanti VPN Attacks

China, espionage, Ivanti, Malware & Threats, Nation-State /

Chinese Cyberspies Use New Malware in Ivanti VPN Attacks 2024-02-28 at 14:52 By Ionut Arghire Chinese threat actors target Ivanti VPN appliances with new malware designed to persist system upgrades. The post Chinese Cyberspies Use New Malware in Ivanti VPN Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Chinese Cyberspies Use New Malware in Ivanti VPN Attacks Read More »

US Government Urges Cleanup of Routers Infected by Russia’s APT28

APT28, botnet, Malware & Threats, Nation-State, Russia /

US Government Urges Cleanup of Routers Infected by Russia’s APT28 2024-02-28 at 14:52 By Ionut Arghire The US government says Russia’s APT28 group compromised Ubiquiti EdgeRouters to run cyberespionage operations worldwide. The post US Government Urges Cleanup of Routers Infected by Russia’s APT28 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

US Government Urges Cleanup of Routers Infected by Russia’s APT28 Read More »

Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts

APT29, CISA, Cozy Bear, Malware & Threats, Midnight Blizzard, Nation-State, Uncategorized /

Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts 2024-02-26 at 19:17 By Ionut Arghire US government and allies expose TTPs used by notorious Russian hacking teams and warn of the targeting of dormant cloud accounts. The post Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts Read More »

State-Sponsored Group Blamed for Change Healthcare Breach

8-K filing, Data Breaches, healthcare, Nation-State, SEC disclosure, United Healthcare /

State-Sponsored Group Blamed for Change Healthcare Breach 2024-02-26 at 17:33 By Ionut Arghire UnitedHealth Group is blaming a state-sponsored threat actor for a disruptive cyberattack on its subsidiary Change Healthcare. The post State-Sponsored Group Blamed for Change Healthcare Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

State-Sponsored Group Blamed for Change Healthcare Breach Read More »

Russian Turla Cyberspies Target Polish NGOs With New Backdoor

backdoor, Malware, Malware & Threats, Nation-State, Russia, Turla /

Russian Turla Cyberspies Target Polish NGOs With New Backdoor 2024-02-22 at 18:01 By Ionut Arghire Russian state-sponsored threat actor Turla has been using a new backdoor in recent attacks targeting Polish NGOs. The post Russian Turla Cyberspies Target Polish NGOs With New Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Russian Turla Cyberspies Target Polish NGOs With New Backdoor Read More »

Russian Cyberspies Exploit Roundcube Flaws Against European Governments

Government, Nation-State, Roundcube, Russia /

Russian Cyberspies Exploit Roundcube Flaws Against European Governments 2024-02-19 at 15:01 By Ionut Arghire Russian cyberespionage group targets European government, military, and critical infrastructure entities via Roundcube vulnerabilities. The post Russian Cyberspies Exploit Roundcube Flaws Against European Governments appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Russian Cyberspies Exploit Roundcube Flaws Against European Governments Read More »

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies

APT28, FBI, Forest Blizzard, KV Botnet, Malware & Threats, Nation-State /

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies 2024-02-15 at 21:46 By Ryan Naraine The US government says it has neutralized a network of hundreds of Ubiquiti Edge OS routers under the control of the Russia’s APT28 hackers. The post FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies appeared first on SecurityWeek. This

React to this headline:

Loading spinner

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies Read More »

Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years

China, espionage, Nation-State /

Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years 2024-02-12 at 16:16 By Ionut Arghire A possibly China-linked threat actor uses a custom backdoor in a cyberespionage campaign ongoing since at least 2021. The post Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years Read More »

Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft

Iran, Israel, Nation-State /

Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft 2024-02-08 at 17:47 By Ionut Arghire Iran’s offensive cyber operations against Israel went from chaotic in October 2023 to targeting new geographies a month later. The post Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft Read More »

Fortinet: APTs Exploiting FortiOS Vulnerabilities in Critical Infrastructure Attacks

Nation-State /

Fortinet: APTs Exploiting FortiOS Vulnerabilities in Critical Infrastructure Attacks 2024-02-08 at 17:01 By Eduard Kovacs Fortinet warns that Chinese and other APTs are exploiting CVE-2022-42475 and CVE-2023-27997 in attacks. The post Fortinet: APTs Exploiting FortiOS Vulnerabilities in Critical Infrastructure Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Fortinet: APTs Exploiting FortiOS Vulnerabilities in Critical Infrastructure Attacks Read More »

CISA: China’s Volt Typhoon Hackers Planning Critical Infrastructure Disruption

China, CISA, critical infrastructure, Malware & Threats, Nation-State, Volt Typhoon /

CISA: China’s Volt Typhoon Hackers Planning Critical Infrastructure Disruption 2024-02-08 at 01:01 By Ryan Naraine New CISA alert includes technical mitigations to harden attack surfaces and instructions to hunt for the Chinese government-backed hackers. The post CISA: China’s Volt Typhoon Hackers Planning Critical Infrastructure Disruption appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

CISA: China’s Volt Typhoon Hackers Planning Critical Infrastructure Disruption Read More »

In Other News: Palo Alto Loses Patent Lawsuit, Identity Firms Get Funding, Government Hackers

Cybersecurity Funding, In Other News, Nation-State /

In Other News: Palo Alto Loses Patent Lawsuit, Identity Firms Get Funding, Government Hackers 2024-02-03 at 13:31 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Palo Alto Networks ordered to pay $150 million in patent lawsuit, identity solutions firms get big funding, government hacker techniques.  The post In Other News: Palo

React to this headline:

Loading spinner

In Other News: Palo Alto Loses Patent Lawsuit, Identity Firms Get Funding, Government Hackers Read More »

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks 

critical infrastructure, Iran, Israel, Malware & Threats, Nation-State, Unitronics /

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks  2024-02-02 at 22:02 By Ryan Naraine The US government slaps sanctions against six Iranian government officials linked to cyberattacks against Israeli PLC vendor Unitronics. The post US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks  appeared first on SecurityWeek. This

React to this headline:

Loading spinner

US Slaps Sanctions on ‘Dangerous’ Iranian Hackers Linked to Water Utility Hacks  Read More »

Cloudflare Hacked by Suspected State-Sponsored Threat Actor 

Cloudflare, Featured, Nation-State /

Cloudflare Hacked by Suspected State-Sponsored Threat Actor  2024-02-02 at 13:46 By Ionut Arghire A nation-state threat actor accessed internal Cloudflare systems using credentials stolen during the Okta hack. The post Cloudflare Hacked by Suspected State-Sponsored Threat Actor  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

Cloudflare Hacked by Suspected State-Sponsored Threat Actor  Read More »

Watch: Top Cyber Officials Testify on China’s Cyber Threat to US Critical Infrastructure

Cyberwarfare, Nation-State, Uncategorized /

Watch: Top Cyber Officials Testify on China’s Cyber Threat to US Critical Infrastructure 2024-02-01 at 18:01 By SecurityWeek News Video: Top US cyber officials testify on China’s cyber threat to U.S. national security and critical infrastrcuture. The post Watch: Top Cyber Officials Testify on China’s Cyber Threat to US Critical Infrastructure appeared first on SecurityWeek.

React to this headline:

Loading spinner

Watch: Top Cyber Officials Testify on China’s Cyber Threat to US Critical Infrastructure Read More »

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon

Cisco, KV Botnet, Nation-State, Netgear, Network Security, Volt Typhoon /

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon 2024-01-31 at 23:01 By Ryan Naraine The US government neutralizes a botnet full of end-of-life Cisco and Netgear routers being by a notorious Chinese APT group. The post US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon appeared first on

React to this headline:

Loading spinner

US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon Read More »

Ivanti Struggling to Hit Zero-Day Patch Release Schedule

CISA, CVE-2023-46805, CVE-2024-21887, Ivanti, Nation-State, Volexity, Vulnerabilities /

Ivanti Struggling to Hit Zero-Day Patch Release Schedule 2024-01-29 at 22:15 By Ryan Naraine Ivanti is struggling to hit its own timeline for the delivery of patches for critical — and already exploited — flaws in its flagship VPN appliances. The post Ivanti Struggling to Hit Zero-Day Patch Release Schedule appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Ivanti Struggling to Hit Zero-Day Patch Release Schedule Read More »

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware

Blackwood, China, espionage, Malware, Malware & Threats, Nation-State /

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware 2024-01-26 at 14:02 By Ionut Arghire The China-linked cyberespionage group Blackwood has been caught delivering malware to entities in China and Japan.  The post Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware Read More »

HPE Says Russian Government Hackers Had Access to Emails for 6 Months

APT29, Email, email security, Featured, HPE, Nation-State, Russia /

HPE Says Russian Government Hackers Had Access to Emails for 6 Months 2024-01-25 at 12:16 By Eduard Kovacs HPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months. The post HPE Says Russian Government Hackers Had Access to Emails for 6 Months appeared first on

React to this headline:

Loading spinner

HPE Says Russian Government Hackers Had Access to Emails for 6 Months Read More »

Scroll to Top