Tag: Reconnaissance
Chinese APT is Targeting Air-Gapped Systems in Eastern Europe
Kaspersky researchers noted a new campaign by Chinese APT hackers targeting air-gapped systems of industrial organisations in Eastern Europe.
Hackers are reportedly using 15 implants...
A Trojanized Windows 10 Installer Used for Cyberattacks on Ukraine Govt
Mandiant and Google threat intelligence researchers have spotted cyberattacks against the Ukraine government entities, leveraging a fake Windows 10 installer.
The said installer is a...
CodeRAT Malware Source Code Published online on GitHub
Researchers at SafeBreach noted a remote access trojan called CodeRAT, which is capable of a range of malicious activities once deployed into the targeted...
North Korean APT is Targeting European Countries With Konni RAT
Researchers at Securonix detailed an ongoing campaign against several European countries, where North Korean-linked hackers (APT37) are cyber attacking with Konni RAT.
They named the...
Winnti: A Chinese APT Using Legit Windows Tools to Steal Data
In a briefing given to the FBI and US DoJ, Cybereason researchers explained the campaign of Winnti, a Chinese APT aimed at reconnaissance purposes.
Researchers...
AridViper Target Israeli Officials With a Spyware For Stealing Data
Prominent people from the Israeli government are targeted with social engineering attacks aimed at stealing sensitive data from their devices.
Researchers at Cybereason noted this...
New Nation-State Hacking Group Spotted Targeting South Asian Countries
Symantec researchers spotted a new nation-state-backed hacking group named Harvester. According to them, the group uses a combination of novel and publicly available tools...
Chinese APT Hackers Found Targeting Southeast Asian Telecoms
Cybereason's Nocturnus team has uncovered a cyberespionage campaign called DeadRinger, where three threat actors are targeting telecom companies in Southeast Asia.
Tracking their techniques and...
Chinese Hackers Found Hacking Airline Companies to Steal PNR Data
A new report by NCC Group and its subsidiary Fox-IT details about a reconnaissance campaign, where the threat actor is breaching airline servers to...