Chinese Hacking Group Targets Airlines, Semiconductor Firms

Data Breach Today

Chimera' Exfiltrates Intellectual Property, Personal Data A hacking group with apparent ties to China is targeting airlines and semiconductor firms to steal intellectual property and personal data in repeated exfiltration efforts, according to the NCC Group

Lazarus Group Targeted COVID-19 Research

Data Breach Today

Kaspersky: North Korean APT Group Used Malware in Attempt to Steal Information The Lazarus Group, a North Korean advanced persistent threat gang, apparently recently targeted a national ministry of health and a drug manufacturer involved in developing a COVID-19 vaccine in an attempt to steal information, according to the security firm Kaspersky.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Magecart Groups Hide Behind 'Bulletproof' Hosting Service

Data Breach Today

Researchers Find Groups Hiding JavaScript Skimmers and Phishing Pages Several Magecart groups hide their JavaScript skimmers, phishing domains and other malicious tools behind a "bulletproof" hosting service called Media Land, according to researchers with RiskIQ.

Ransomware Group Turns to Facebook Ads

Krebs on Security

Now, one crime group has started using hacked Facebook accounts to run ads publicly pressuring their ransomware victims into paying up. The ad was designed to turn the screws to the Italian beverage vendor Campari Group , which acknowledged on Nov.

ABCs of Data Normalization for B2B Marketers

Data normalization. It’s not a far stretch to suggest that the topic isn’t exactly what gets marketers excited in their day-to-day workflow. However, if lead generation, reporting, and measuring ROI is important to your marketing team, then data normalization matters - a lot. In this eBook, we’ll break down the ins and outs of data normalization and review why it’s so critical for your marketing strategies and goals!

Alert: APT Groups Targeting US Think Tanks

Data Breach Today

CISA and FBI Say Focus Is on Those Working on International Affairs, National Security CISA and the FBI have issued a warning that advanced persistent threat groups are waging cyberespionage campaigns against U.S.

U.S. Imposes Sanctions on Iranian APT Group

Data Breach Today

Treasury Department on Thursday imposed sanctions on an Iranian advanced persistent threat group, 45 associated individuals and a front company the Iranian government used for a years-long malware campaign that targeted Iranian dissidents, journalists and others

Additional Hacking Tools Tied to North Korean-Linked Group

Data Breach Today

Cybereason Finds Kimsuky Group Using Fresh Spying Tools, Infrastructure Researchers with Cybereason have uncovered a fresh set of malicious tools tied to a North Korean-linked hacking group called Kimsuky, according to a recent analysis.

233
233

Russian Hacking Group's Backdoor Uses Dropbox

Data Breach Today

Researchers Describe Turla Group's 'Crutch' Malware As part of a cyberespionage campaign, the Russian hacking group known as Turla deployed a backdoor called "Crutch" that uses Dropbox resources to help gather stolen data, according to the security firm ESET

Microsoft: Hacking Groups Shift to New Targets

Data Breach Today

Best Practices for Modern Records Management and Retention

Speaker: Sean Baird, Director of Product Marketing at Nuxeo

Documents are at the heart of many business processes. Organizations in highly regulated industries are realizing that traditional records management practices are insufficient and ineffective in today’s digital world. Join Sean Baird as he highlights best practices for effective records management and retention. He will explore how digital transformation can counteract the costs, inefficiencies, and end-user considerations that make it difficult to maintain compliance. He will highlight real-world successes and analyze the key strategies and technologies that help organizations find balance.

APT Group Targets Fintech Companies

Data Breach Today

Report: Little-Known Evilnum Group Relies on Spear-Phishing Emails A little-known advanced persistent threat group dubbed Evilnum has been targeting fintech firms in the U.K. and Europe over the past two years, using spear-phishing emails and social engineering to start their attacks, according to the security firm ESET

Chinese Hacking Group Rebounds With Fresh Malware

Data Breach Today

Researchers: TA416 Ramping Up Phishing Emails Targeting Diplomatic Missions A Chinese advanced persistent threat group has recently begun ramping up its activities with a new phishing campaign leveraging updated malware that's targeting diplomatic missions around the world to collect data and monitor communications, according to Proofpoint.

US Seizes $2 Million in Cryptocurrency From Terrorist Groups

Data Breach Today

Justice Department Describes How Groups Raised Funds The U.S. Justice Department has seized more than $2 million worth of cryptocurrency from terrorists groups who solicited donations via social media and waged fraud campaigns

254
254

Researchers Disclose Details of FIN7 Hacking Group's Malware

Data Breach Today

Report Dissects JSSLoader Remote Access Trojan Researchers at Morphisec Labs have published fresh details about a malware variant called JSSLoader that the FIN7 hacking group has used for several years

Access 186

Lazarus Group Reportedly Now Wielding Ransomware

Data Breach Today

Kaspersky Discovers 2 Incidents Involving VHD Ransomware The Lazarus Group, the North Korean hacking group behind the WannaCry worm, the theft of $81 million from a Bangladesh bank and the attacks on Sony Pictures, apparently is expanding into ransomware, according to the security firm Kaspersky

Iranian Hacking Group Suspected of Deploying Ransomware

Data Breach Today

ClearSky: 'MuddyWater' APT Linked to Attacks Targeting Israel, Others A hacking group with links to Iran's government is suspected of using ransomware in attempts to damage the systems of organizations in Israel and other countries, the security firm ClearSky reports

Privacy Group Files Complaint Over iOS Tracking

Data Breach Today

Other Tech Firms Back Facebook's Lawsuit Against NSO Group

Data Breach Today

205
205

Hacker-for-Hire Group DeathStalker Implements New Malware

Data Breach Today

PowerPepper' Backdoor Targets Smaller Firms The hacker-for-hire group DeathStalker, known for conducting espionage campaigns against small and medium-sized businesses, has started using a new malware strain called PowerPepper, according to a report from the security firm Kaspersky

APT Groups Target Firms Working on COVID-19 Vaccines

Data Breach Today

Microsoft Says Attacks on Seven Companies Blocked Three state-sponsored advanced persistent threat groups - one Russian, two North Korean - have been targeting companies across the globe involved with COVID-19 vaccine and treatment development, Microsoft says

221
221

Iranian APT Group Revived Phishing Activities Over Holidays

Data Breach Today

Researchers: Charming Kitten Campaign Used SMS and Email Messages A recent phishing campaign tied to an Iranian hacking group known as Charming Kitten used SMS and email messages to spread malicious links to steal the email credentials of potential victims in the U.S.,

Another Threat Group Joins Ransomware Extortion Racket

Data Breach Today

FireEye: 'FIN11' Deploys Clop Ransomware A newly identified financially motivated threat group, dubbed "FIN11," is deploying Clop ransomware and exfiltrating data from its targets for extortion efforts, according to researchers at FireEye Mandiant

APT Group Wages Cyber Espionage Campaign

Data Breach Today

Symantec: Palmerworm Targeting Victims in US and Asia Palmerworm, an advanced persistent threat group that's been active since 2013, is waging a cyber espionage campaign using customized malware that's targeting organizations in the U.S.

168
168

Google Offers Fresh Details on China-Linked Hacking Group

Data Breach Today

Analysis Shines Light on Group that Targeted Biden's Campaign Offices A report from Google's Threat Analysis Group is offering fresh details about the hacking group that targeted Joe Biden's campaign earlier this year with phishing emails.

Enel Group suffered the second ransomware attack this year

Security Affairs

Multinational energy company Enel Group has been hit by Netwalker ransomware operators that are asking a $14 million ransom. The news of a possible ransomware attack against Enel Group was reported to BleepingComputer by a researcher on October 19.

Hacking Group Dropping Malware Via Facebook, Cloud Services

Data Breach Today

Cloud 169

Group Behind WannaCry Now Using New Malware

Data Breach Today

CISA Warns That Lazarus Group Has Added 3 New Tools A sophisticated hacking group associated with the North Korean government that's been tied to a number of high-profile attacks, including WannaCry, is using three new malware variants, according to the U.S.

APT Groups Planting Backdoors: Report

Data Breach Today

Researchers Say Groups With Apparent Ties to Iran Exploiting VPN Vulnerabilities Since August, security researchers have warned that attackers are targeting unpatched VPN servers with known vulnerabilities. Now security firm ClearSky says that three APT groups, which apparently have ties to Iran, have been exploiting the flaws to plant backdoors in corporate and government networks

APT Group Targeting Military Refines Its Tactics

Data Breach Today

Additional Hacking Tools Tied to North Korea-Linked Group

Data Breach Today

Kimsuky Group Employs Fresh Spying Tools, Infrastructure, Cybereason Reports Researchers with Cybereason have uncovered a fresh set of malicious tools tied to a North Korean-linked hacking group called Kimsuky, according to a recent analysis.

171
171

Alert: APT Groups Targeting COVID-19 Researchers

Data Breach Today

are warning medical institutions, pharmaceutical companies, universities and others about "password-spraying campaigns" by advance persistent threat groups seeking to steal COVID-19 research data. Password-Spraying' Campaigns Aimed at Stealing Research Data, US and UK Authorities Warn Authorities in the U.S. and U.K.

China-Backed APT Group Reportedly Targets India, Hong Kong

Data Breach Today

Researchers: Recently Uncovered Hacking Group Has Been Operating Since 2014 An hacking group that appears to have ties to the government of China has been targeting victims in India and Hong Kong, according to the security firm Malwarebytes

Lazarus Group Deploying Fresh Malware Framework

Data Breach Today

Kaspersky: MATA Framework Used to Spread Ransomware, Steal Databases Lazarus Group, a sophisticated hacking group associated with the North Korean government, is using a new malware framework to spread ransomware and steal databases from victims, according to security firm Kaspersky

Copycat Hacking Groups Launch DDoS Attacks

Data Breach Today

Akamai: Extortionists Target Financial Firms, Use APT Group Personas Copycats using well-known threat actor names, such as Fancy Bear and Armada Collective, are launching extortion campaigns tied to distributed denial-of-service attacks against financial institutions, according to Akamai's Security Intelligence Research Team.

Hacking Group Used Crypto Miners as Distraction Technique

Data Breach Today

Microsoft: Bismuth APT Tries to Distract Targets From Spying Tools A hacking group recently deployed cryptocurrency miners within targeted victims' networks to distract security teams from their cyberespionage campaigns, Microsoft reports

Hacking Group Targeted Zero-Day Flaw In Oracle Solaris

Data Breach Today

FireEye: UNC1945 Focuses on Telecom, Financial And Consulting Firm Targets A recently identified hacking group dubbed UNC1945 used a never-before-seen zero-day vulnerability in the Oracle Solaris operating system to target corporate networks and plant malware, according to FireEye Mandiant.

186
186

Russian Hacking Group Upgrades Malicious Toolset

Data Breach Today

Turla' Recently Targeted a European Government Agency for Espionage Turla, a hacking group based in Russia, is deploying a revamped set of customized tools to target potential victims, including a European government agency, for its espionage campaigns, according to Accenture

Rent a hacker: Group-IB uncovers corporate espionage group RedCurl

Security Affairs

Threat Intel firm Group-IB has released an analytical report on the previously unknown APT group RedCurl, which focuses on corporate espionage. A presumably Russian-speaking group conducts thoroughly planned attacks on private companies across numerous industries using a unique toolset.

Lazarus Group Hits COVID-19 Vaccine-Maker in Espionage Attack

Threatpost

Breach Government Hacks Malware advanced persistent threat apt COVID-19 cyberattack espionage health ministry IP theft Lazarus Group North Korea pharmaceutical company supply chain attack vaccine vaccine development