Security Affairs

OCTOBER 18, 2022

Winnti (aka APT41 , Axiom, Barium , Blackfly) is a cyberespionage group that has been active since at least 2007. Symantec pointed out that the attacks against government organizations in Hong Kong remained undetected for a year in some cases. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

File names 113

File names Encryption Manufacturing Libraries 113

Security Affairs

JULY 20, 2023

The APT41 group, aka Winnti , Axiom, Barium , Blackfly, HOODOO) is a China-linked cyberespionage group that has been active since at least 2007. government. These commands include instructing the malware to upload log files, photos stored on the device, and acquire device location using the Baidu Location library.”

File names 87

File names Libraries Cybersecurity IT 87

Security Affairs

OCTOBER 3, 2018

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. “HIDDEN COBRA actors most likely deployed ISO 8583 libraries on the targeted switch application servers. Pierluigi Paganini.

Retail 91

Retail Libraries Phishing Authentication 91

Security Affairs

JUNE 2, 2019

Turla group has been active since at least 2007 targeting government organizations and private businesses. “To confound detection, its operators recently started using PowerShell scripts that provide direct, in- memory loading and execution of malware executables and libraries. ” reads the report published by ESET.

Libraries 100

Libraries Cloud Security Cybersecurity 100

Security Affairs

AUGUST 23, 2018

Turla is the name of a Russian cyber espionage APT group (also known as Waterbug, Venomous Bear and KRYPTON) that has been active since at least 2007 targeting government organizations and private businesses. The backdoor is a standalone DLL (dynamic link library) that interacts with Outlook and The Bat! Pierluigi Paganini.

Metadata 46

Metadata Military Libraries Access 46

Krebs on Security

JUNE 7, 2021

KrebsOnSecurity recently had occasion to contact the Russian Federal Security Service (FSB), the Russian equivalent of the U.S. biz, circa 2007. This appears to be the case regardless of which Russian government site you visit. Federal Bureau of Investigation (FBI). The FSB headquarters at Lubyanka Square, Moscow.

Encryption 296

Encryption Ransomware Government Communications 296

eSecurity Planet

AUGUST 13, 2021

Since the inception of data forensics almost forty years ago, methods for investigating security events have given way to a market of vendors and tools offering digital forensics software (DFS). The Sleuth Kit enables administrators to analyze file system data via a library of command-line tools for investing disk images. Volatility.

e-Discovery 139

e-Discovery Computer and Electronics Marketing Compliance 139