This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove Document Remove File names Remove Military Related Topics
Libraries Security Government Education CMS Archiving Passwords Phishing Information Security Communications More Related Topics >
article thumbnail

Russia-linked APT Gamaredon update TTPs in recent attacks against Ukraine

Security Affairs

JUNE 15, 2023

The Gamaredon APT group (aka Shuckworm, Actinium, Armageddon, Primitive Bear, UAC-0010, and Trident Ursa) continues to carry out attacks against entities in Ukraine, including security services, military, and government organizations. ” reads the report published by Symantec.

Military 88
Military File names Archiving Phishing 88
article thumbnail

GhostWriter APT targets state entities of Ukraine with Cobalt Strike BeaconĀ 

Security Affairs

MARCH 28, 2022

” This second archive contains SFX-archive “Saboteurs filercs.rar,” experts reported that the file name contains the right-to-left override (RTLO) character to mask the real extension. ” reads the advisory published by CERT-UA. CERT-UA also published Indicators of Compromise for the recent campaign.

Archiving 95
Archiving CMS File names Phishing 95
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

New Gallmaker APT group eschews malware in cyber espionage campaigns

Security Affairs

OCTOBER 10, 2018

A previously unknown cyber espionage group, tracked as Gallmaker, has been targeting entities in the government, military and defense sectors since at least 2017. Gallmaker is a politically motivated APT group that focused its surgical operations on the government, military or defense sectors. ” continues Symantec.

Military 83
Military File names Libraries Government 83
article thumbnail

SWEED targets precision engineering companies in Italy

Security Affairs

OCTOBER 28, 2019

Precision engineering is a very important business market in Europe, it includes developing mechanical equipment for: automotive, railways, heavy industries and military grade technology. Basically the attacker asks to the victims to quote the entire list of spear-parts included in an attached Excel document. Technical Analysis.

Passwords 46
Passwords Encryption File names Military 46
article thumbnail

WinRAR CVE-2018-20250 flaw exploited in multiple campaigns

Security Affairs

MARCH 28, 2019

The attackers used decoy documents apparently coming from the Council on Social Work Education (CSWE), a US association representing social work education. “To avoid user suspicion, the ACE file contains a decoy document, ā€œLetter of Approval.pdfā€, which purports to be from CSWE, the Council on Social Work Education as shown in Figure 1.

Archiving 84
Archiving File names Education Libraries 84
article thumbnail

A month later Gamaredon is still active in Eastern Europe

Security Affairs

JUNE 4, 2019

During recent times, Gamaredon is targeting the Ukrainian military and law enforcement sectors too, as officially stated by the CERT-UA. cmd ā€ file. At the same time, the extracted document will be shown in order to divert the user attention and to continue the infection unnoticed. However, the file named ā€œ win32.sys

Archiving 64
Archiving Passwords File names Military 64
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 55,000+ Insiders by signing up for our newsletter

About
Webinars
Awards
About
Editions
Webinars
Awards
Editions
Topics
Twitter
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024