Microsoft dives into the tactics, techniques, and procedures of North Korean threat actor Moonstone Sleet.
The post New North Korean Threat Actor Engaging in Espionage, Revenue Generation Attacks appeared first on SecurityWeek.
In Other News: China’s Undersea Spying, Hotel Spyware, Iran’s Disruptive Attacks
Noteworthy stories that might have slipped under the radar: Chinese repair ships might be spying on undersea communications, spyware found at hotel check-ins, UK not ready for China threat.
The post In Other News: China’s Undersea Spying, Hotel Spyware, Iran’s Disruptive Attacks appeared first on SecurityWeek.
Newly Detected Chinese Group Targeting Military, Government Entities
Unfading Sea Haze has been targeting military and government entities in South China Sea countries since 2018.
The post Newly Detected Chinese Group Targeting Military, Government Entities appeared first on SecurityWeek.
Google Cites ‘Monoculture’ Risks in Response to CSRB Report on Microsoft
Google is invoking the ‘monoculture’ word in response to a scathing U.S. government report on Microsoft’s inadequate cybersecurity practices.
The post Google Cites ‘Monoculture’ Risks in Response to CSRB Report on Microsoft appeared first on SecurityWeek.
MITRE Hack: China-Linked Group Breached Systems in December 2023
MITRE has shared more details on the recent hack, including the new malware involved in the attack and a timeline of the attacker’s activities.
The post MITRE Hack: China-Linked Group Breached Systems in December 2023 appeared first on SecurityWeek.
Iranian Cyberspies Hit Targets With New Backdoors
Iranian state-sponsored group APT42 is targeting NGOs, government, and intergovernmental organizations with two new backdoors.
The post Iranian Cyberspies Hit Targets With New Backdoors appeared first on SecurityWeek.
US Says North Korean Hackers Exploiting Weak DMARC Settings
The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks.
The post US Says North Korean Hackers Exploiting Weak DMARC Settings appeared first on SecurityWeek.
ArcaneDoor Espionage Campaign Targeting Cisco Firewalls Linked to China
An analysis of IoCs suggests that a Chinese threat group may be behind the recent ArcaneDoor espionage campaign targeting Cisco firewalls.
The post ArcaneDoor Espionage Campaign Targeting Cisco Firewalls Linked to China appeared first on SecurityWeek.
Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data
Cuttlefish malware platform roaming around enterprise SOHO routers capable of covertly harvesting public cloud authentication data from internet traffic.
The post Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data appeared first on SecurityWeek.
Cisco Raises Alarm for ‘ArcaneDoor’ Zero-Days Hitting ASA Firewall Platforms
Cisco warns that nation state-backed hackers are exploiting at least two zero-day vulnerabilities in its ASA firewall platforms to plant malware on telecommunications and energy sector networks.
The post Cisco Raises Alarm for ‘ArcaneDoor’ Zero-Days Hitting ASA Firewall Platforms appeared first on SecurityWeek.
