According to researchers, the China-backed APT named Naikon (also known as ‘Override Panda’) has shown up again. The group masterminded a recent phishing campaign that was carried out to steal confidential information assets.
Also known as Hellsing, and Bronze Geneva, Naikon is a known nation-state actor that has been working on behalf of China since 2005. The group was first…
Bumblebee: A new malware loader on the prowl
April 28, 2022
A latest report by Proofpoint has uncovered that attackers are using a new malware loader named Bumblebee. These threat actors were previously known for delivering BazaLoader and IcedID loaders.
According to the write-up, Bumblebee, a sophisticated malware loader, has been active in the cyberspace since March 2022, post the absence of BazaLoader. It must be noted that Bumblebee is capable of…
The FBI has issued a warning on the lethal Blackcat/ALPHV ransomware as a service (RaaS), which is currently on prowl. The malware family was responsible for compromising accounts spanning over sixty organizations, with attacks spanning from November 2021 till March this year.
In their flash report, the FBI detailed the indicators of compromise (IOC) and tactics, techniques and procedures…
Israel's Pegasus spyware finds a new target
April 13, 2022
A new report from Reuters suggests that EU officials were allegedly targeted by the NSO group’s Pegasus spyware.
The report stated that atleast five individuals were spied upon by unknown entities using the infamous malware. In addition to two unnamed EU officials, the list of victims also include Didier Reynders,a senior Belgian official who has served as the European Justice…
With data breaches and information stealing becoming a prevalent sight in cyberspace, researchers have now warned the looming presence of two info-stealers, namely FFDroider and Lightning Stealer, which are capable of stealing sensitive information while launching further attacks.
An official statement released by ZScaler based cybersecurity researchers Avinash Kumar and Niraj Shivtarkar…
On Tuesday, the German federal criminal police department, known as Bundeskriminalamt, announced that they have dismantled servers belonging to the Russia-based darknet market Hydra. Additionally, the forces have also confiscated bitcoin resources worth 25 million euros ($25 million).
In the official statement, the authorities revealed that the joint operation that dates back to August 2021…
Deep Panda, the advanced persistent threat group, has launched new attacks using Log4shell to deploy the new Fire Chili rootkit. Known as Shell Crew, KungFu Kittens, and Bronze Firestone, Deep Panda has been one of China’s most infamous nation-state threat actors.
Recently, a report published by researchers Rotem Sde-Or and Eliran Voronovitch stated that the group has mainly attacked…
Lapsus$, an infamous cybercrime gang, had previously breached high-profile companies such as Microsoft, NVIDIA, and Samsung. Recently they claimed responsibility for the data breach targeting Globant, a Luxembourg-based software service company, thereby announcing their return after a brief ‘vacation’.
An message regarding the attack was shared on Lapsus$’ official Telegram…
The establishment of an annual discussion between Singapore and the United States was announced on Tuesday (Mar 29) as part of bolstering cybersecurity cooperation.
Singapore Prime Minister Lee Hsien Loong is in the United States on a working visit. After attending a meeting in the White House, Singapore Prime Minister Lee Hsien Loong and US President Joe Biden released a joint…
Ukrtelecom has been targeted by a "powerful" cyberattack
March 29, 2022
Ukrtelecom, Ukraine’s largest fixed-line telecommunications firm, has been targeted by a “powerful” cyberattack. It is considered to be the most lethal cyberattack since the Russian invasion began in February, and it has brought the company’s services across the country to a halt.
Ukrtelecom CEO Yuriy Kurmaz said in a statement that a powerful hostile cyber attack was…