Tag

Advanced Persistent Threat

All articles tagged with #advanced persistent threat

cybersecurity2 years ago•2 min saved

DarkCasino: APT Threat Exploiting WinRAR Flaw Uncovered by Experts

DarkCasino, an economically motivated Advanced Persistent Threat (APT) group, has been identified as exploiting a recently disclosed security flaw in WinRAR as a zero-day. The group, previously associated with phishing campaigns, has demonstrated strong technical abilities and a desire to steal online property. The exact origin of DarkCasino is unknown, but its attacks have targeted users of online financial services and cryptocurrencies worldwide. Multiple threat actors, including APT28, APT29, and Sandworm, have also exploited the WinRAR vulnerability, posing uncertainties for APT attacks in the second half of 2023.

via The Hacker News|

#advanced-persistent-threat #cyberattacks #cybersecurity

cybersecurity2 years ago•2 min saved

Massive supply chain attack targets 3CX phone system users.

Security researchers have discovered a supply chain attack targeting downstream customers of 3CX's voice and video-calling client, which is used by over 600,000 organizations worldwide. The trojanized version of the software is capable of stealing data and stored credentials from Google Chrome, Microsoft Edge, Brave, and Firefox user profiles. The attack appears to be a targeted Advanced Persistent Threat, possibly state-sponsored, and North Korean threat actor Labyrinth Chollima is suspected to be behind it. 3CX is urging its customers to uninstall the app and install it again or use its PWA client as a workaround.

via TechCrunch|

#3cx #advanced-persistent-threat #cybersecurity