Iranian Hacking Group Continues Targeting Universities

Data Breach Today

Cobalt Dickens' Group Attempting to Steal Intellectual Property "Cobalt Dickens," a threat group with suspected ties to Iran, is continuing its attempts to steal intellectual property from schools and universities, according to an analysis by SecureWorks.

IT 231

Chinese APT Group 'Thrip' Powers Ahead

Data Breach Today

Hackers Have Attacked at Least 12 Targets Since 2018, Symantec Researchers Say A Chinese advanced persistent threat group dubbed "Thrip" has attacked at least 12 organizations in Southeast Asia since being exposed last year, Symantec researchers say.

199
199

Russian Hackers Coopted Iranian APT Group's Infrastructure

Data Breach Today

UK and US Intelligence Agencies Report That Turla Group Seized OilRig APT Assets Turla, an advanced persistent threat group with apparent ties to Russia, seized attack infrastructure and tools used by OilRig, an Iranian APT group, U.K.

IT 130

Cisco: Hacking Group Targets US Veterans

Data Breach Today

Attackers Used Phony Job Website to Install Malware, Researchers Say A threat group has been targeting U.S. veterans through a spoofed website promising help for those looking for jobs, according to research from Cisco Talos.

205
205

A Year Later, Cybercrime Groups Still Rampant on Facebook

Krebs on Security

Almost exactly one year ago, KrebsOnSecurity reported that a mere two hours of searching revealed more than 100 Facebook groups with some 300,000 members openly advertising services to support all types of cybercrime, including spam, credit card fraud and identity theft.

US Sanctions 3 North Korean Hacking Groups

Data Breach Today

Treasury Department has sanctioned three alleged North Korean hacking groups that have been blamed for the WannaCry ransomware, online bank heists and destructive malware attacks Trump Administration Cites WannaCry, Sony Pictures, Bangladesh Bank Attacks As part of the U.S.

Pacha Group declares war to rival crypto mining hacking groups

Security Affairs

Two hacking groups associated with large-scale crypto mining campaigns, Pacha Group and Rocke Group , wage war to compromise as much as possible cloud-based infrastructure. SecurityAffairs – Pacha Group, cryptocurrency miners).

Mining 108

Magecart Group Continues Targeting E-Commerce Sites

Data Breach Today

Leak Exposes OilRig APT Group's Tools

Data Breach Today

Group, Apparently Backed By Iran, Was Broadening Its Targets, Analysts Say A set of malicious tools, along with a list of potential targets and victims, belonging to an APT group dubbed OilRig has leaked online, exposing some of the organization's methods and goals, analysts say

IT 227

U.S. Sanctions North Korean Group Behind WannaCry, Sony Hacks

Threatpost

Three North Korean threat groups have been sanctioned in the U.S. Government Hacks Andariel bangladesh central bank Bluenoroff hack Lazarus Group North Korea ransomware Sony picture hack SWIFT threat group US us sanctions wannacry attack

Oil and Gas Firms Targeted By New LYCEUM Threat Group

Threatpost

A new threat group has been discovered targeting Middle Eastern critical infrastructure firms with spearphishing emails laced with malware.

112
112

Chinese APT Group Began Targeting SSL VPN Flaws in July

Data Breach Today

Pulse Secure and Fortinet Released Critical Fixes Months Ago, But Patching Lags A hacking group known as APT5 - believed to be affiliated with the Chinese government - has been targeting serious flaws in Pulse Secure and Fortinet SSL VPNs for more than six weeks, security experts warn.

Chinese APT Groups Target Cancer Research Facilities: Report

Data Breach Today

Cyber-Intelligence Firm NSO Group Tries to Boost Reputation

Data Breach Today

Critics Questions Whether Israeli Firm's Moves Will Have an Impact Israel-based cyber-intelligence firm NSO Group, which has been accused of selling technology that enables governments to spy on citizens, is pledging to adopt human rights guidelines developed by the United Nations.

'Fancy Bear' Hacking Group Adds New Capabilities, Targets

Data Breach Today

Russia-Backed APT Groups Compete With Each Other: Report

Data Breach Today

Researchers Find That State-Sponsored Cyberespionage Groups Seldom Share Code APT groups that are backed by the Russian government rarely share code with each other, fostering a competitive landscape, according to a new report.

Microsoft Takes Control of 99 Websites From APT Group

Data Breach Today

Phosphorus Group Waged Spear-Phishing Campaign, Company Reports Microsoft is using its legal muscle to push back against an advanced persistent threat group that is says is "widely associated with Iranian hackers."

ScarCruft APT Group Targets Bluetooth With Malware: Report

Data Breach Today

Kaspersky Lab Says Korean-Speaking Group Expanding Its Arsenal ScarCruft, a Korean-speaking APT group that has been targeting organizations mainly in Southeast Asia over the past three years, is developing new malware that targets Bluetooth-enabled devices, according to Kaspersky Lab

IT 226

Lotsy group targets Italian and Spanish-speaking users

Security Affairs

Group-IB discovered massive fraudulent campaigns carried out by Lotsy group involving the use of dozens of well-known brands aimed at Italian and Spanish-speaking customers. Group-IB’s Brand Protection team has detected a total of 114 related fake web-resources involved in the scheme.

Retail 107

Despite Doxing, OilRig APT Group Remains a Threat

Data Breach Today

Researchers Describe What They've Learned From Data Dump Despite a doxing of its targets and tools in March, the advanced persistent threat group known as OilRig remains a significant threat to governments and businesses, researchers at Palo Alto Network's Unit 42 report

Magecart Group Targets Routers Behind Public Wi-Fi Networks

Threatpost

Magecart Group 5 has been spotted testing and preparing code to be injected onto commercial routers - potentially opening up guests connecting to Wi-Fi networks to payment data theft.

114
114

Russia-Linked Cyber Espionage Group APT29 Remains Active

Data Breach Today

Panda Threat Group Mines for Monero With Updated Payload, Targets

Threatpost

Though harboring unsophisticated payloads, the Panda threat group has updated its tactics - from targets to infrastructure - and successfully mined hundreds of thousands of dollars using cryptomining malware.

Mining 111

Toyota Australia, Healthcare Group Hit By Cyberattacks

Data Breach Today

A healthcare group acknowledged it was the victim of a ransomware attack. Country Has Faced a Series of Security Incidents in Recent Weeks Australia has faced a few tough weeks on the cybersecurity front. Toyota Australia's computer systems were still down Friday after an attempted cyberattack. And last week, suspected nation-state attackers hit Parliament's email systems

Groups Offer Ideas for Improving Healthcare Cybersecurity

Data Breach Today

Mark Warner Several industry groups have offered suggestions - ranging from better cyber information sharing to new regulatory "safe harbors" for entities complying with best practices - in response to Sen. Recommendations Made in Response to Request by Sen.

Magecart Cybercrime Groups Harvest Payment Card Data

Data Breach Today

Researchers say they are tracing at least six active Magecart groups, each with unique infrastructure, skimmers and targeting

208
208

Robots at HIS Group are vulnerable to hack

Security Affairs

The Japanese hotel chain HIS Group admitted that its in-room robots were vulnerable and could allow hackers to remotely view video footage from the devices. The HIS Group hotel chain has 10 locations in Japan that used robots instead of human personnel to provide some services.

Democratic Campaign Group Left 6 Million Emails Exposed

Data Breach Today

UpGuard Finds Misconfigured Amazon S3 Bucket Left Addresses Exposed Security firm UpGuard found that a misconfigured Amazon S3 bucket belonging to the Democratic Senatorial Campaign Committee left the email addresses of more than 6 million U.S. citizens exposed to the internet.

Experts found a link between a Magecart group and Cobalt Group

Security Affairs

Researchers from MalwareBytes and HYAS Threat Intelligence linked one of the hacking groups under the Magecart umbrella to the notorious Cobalt cybercrime Group. Security firms have monitored the activities of a dozen groups at least since 2010.

Groups Ask FDA to Rethink Some Medical Device Cyber Proposals

Data Breach Today

But a variety of changes are needed, say some of the healthcare sector companies and groups that submitted feedback to the agency

M6 Group, largest France private multimedia group, hit by ransomware attack

Security Affairs

The M6 Group, the largest France private multimedia group, was the victim of ransomware over the weekend. Le Groupe M6 a été la cible samedi matin d’une attaque informatique malveillante. — Groupe M6 (@M6Groupe) October 13, 2019.

'Sea Turtle' DNS Hijacking Group Conducts Espionage: Report

Data Breach Today

Cisco Talos Researchers Describe Group's Methods A nation-state sponsored espionage campaign dubbed "Sea Turtle" has been manipulating the domain name system to target more than 40 organizations, including intelligence agencies - especially in North Africa and the Middle East, Cisco Talos warns.

231
231

FIN8 Group Returns, Targeting POS Devices With New Tools

Data Breach Today

Retail 188

Lyceum APT Group a New Threat to Oil and Gas Companies

Data Breach Today

Reports Say Group Also Targeting Telecom Firms An emerging cyber espionage group that apparently started its work in South Africa last year is now focusing on targeting critical control systems for oil and gas companies in the Middle East, according to researchers at two cybersecurity firms

MuddyWater APT Group Upgrades Tactics to Avoid Detection

Data Breach Today

IT 205

Magecart 5 hacker group targets L7 Routers

Security Affairs

IBM researchers observed one of the Magecart groups using a malicious code to inject into commercial-grade layer 7 L7 routers. The post Magecart 5 hacker group targets L7 Routers appeared first on Security Affairs.

Members of Chinese Espionage Group Develop a 'Side Business'

Data Breach Today