A Chinese state-sponsored cyberespionage group tracked as Billbug has been observed targeting a certificate authority in Asia, along with other entities, Symantec reports.
Chinese Cyberespionage Group ‘Billbug’ Targets Certificate Authority
War ‘Wake-up Call’ Spurs EU to Boost Cyber, Army Mobility
The European Union on Thursday unveiled new proposals to help its armies move faster in times of conflict and to boost cyber security, saying that Russia’s war on Ukraine is a wake-up call to bolster Europe’s defenses.
Microsoft Links Prestige Ransomware Attacks to Russian State-Sponsored Hackers
Microsoft has attributed the recently observed Prestige ransomware attacks to a Russian state-sponsored hreat actor tracked as Iridium.
Analysis of Russian Cyberspy Attacks Leads to Discovery of Windows Vulnerability
An analysis of the numerous LDAP queries that Russian cyberespionage group APT29 had made to the Active Directory system has led to the discovery of a vulnerability in Windows’ ‘credential roaming’ functionality.
No Cyberattacks Affected US Vote Counting, Officials Say
No instances of digital interference are known to have affected the counting of the midterm vote after a tense Election Day in which officials were closely monitoring domestic and foreign threats.
Gaping Authentication Bypass Holes in VMWare Workspace One
Virtualization technology giant VMware joined the Patch Tuesday train this week to deliver urgent security patches to its VMWare Workspace One product.
Google Reveals Spyware Vendor’s Use of Samsung Phone Zero-Day Exploits
Google Project Zero has disclosed the details of three Samsung phone vulnerabilities that have been exploited by a spyware vendor since when they still had a zero-day status.
Microsoft Scrambles to Thwart New Zero-Day Attacks
The zero-day attacks against Microsoft’s software products are showing no signs of slowing down.
Microsoft: China Flaw Disclosure Law Part of Zero-Day Exploit Surge
The world’s largest software maker is warning that China-based nation state threat actors are taking advantage of a one-year-old law to “stockpile” zero-days for use in sustained malware attacks.
Nation-State Hacker Attacks on Critical Infrastructure Soar: Microsoft
According to Microsoft’s 2022 Digital Defense Report, nation-state hacker attacks on critical infrastructure have soared, largely due to Russian cyber operations targeting Ukraine and its allies.
