For the past three years, Chinese state-sponsored cyberespionage group RedAlpha has been observed targeting numerous government organizations, humanitarian entities, and think tanks.
Estonia Blocks Cyberattacks Claimed by Russian Hackers
Estonia on Thursday said it had thwarted a major wave of cyber attacks against public and private institutions, as Russian hackers claimed responsibility.
“Yesterday, Estonia was subject to the most extensive cyber attacks it has faced since 2007,” Undersecretary for Digital Transformation Luukas Ilves said on Twitter.
Russian Use of Cyberweapons in Ukraine and the Growing Threat to the West
Vulnerability Broker Applies Pressure on Software Vendors Shipping Faulty, Incomplete Patches
Trend Micro’s Zero Day Initiative, a major player in the vulnerability disclosure ecosystem, is ramping up the pressure on software vendors that consistently ship faulty security patches.
Iranian Group Targeting Israeli Shipping and Other Key Sectors
Mandiant has been tracking an activity cluster that it believes to be from a single Iranian threat group that
Microsoft Announces Disruption of Russian Espionage APT
Microsoft on Monday announced another major disruption of an APT actor believed to be linked to the Russian government, cutting off access to accounts used for pre-attack reconnaissance, phishing, and email harvesting.
Chinese Cyberspies Use Supply Chain Attack to Deliver Windows, macOS Malware
China-linked cyberespionage group Iron Tiger was observed using the compromised servers of a chat application for the delivery of malware to Windows and macOS systems, Trend Micro reports.
Killnet Releases ‘Proof’ of its Attack Against Lockheed Martin
On August 1, Lockheed Martin was supposedly targeted with a DDoS attack delivered by the pro-Russian hacker group Killnet. The information came via the Moscow Times who reported Killnet’s claim for responsibility.
Newsweek added that Killnet claimed to have stolen Lockheed Martin employee data and threatened to share that data.
Zero-Day Vulnerability Exploited to Hack Over 1,000 Zimbra Email Servers
A new zero-day vulnerability affecting Zimbra has been exploited to hack more than 1,000 enterprise email servers, according to incident response firm Volexity.
Cloudflare Also Targeted by Hackers Who Breached Twilio
The threat actor that recently breached Twilio systems also targeted Cloudflare, and a few of the web security company’s employees fell for the phishing messages.
