Tag

Cyber Espionage

All articles tagged with #cyber espionage

cybersecurity13 days ago•3 min saved

Massive Browser Extension Malware Campaigns Expose Global Cybersecurity Threats

The DarkSpectre threat actor, linked to China, has exposed a series of malicious browser extensions across Chrome, Edge, and Firefox, affecting over 8.8 million users worldwide. These extensions, including ShadyPanda, GhostPoster, and The Zoom Stealer, are designed for data theft, corporate espionage, and meeting information harvesting, often masquerading as legitimate tools for video conferencing and utilities. The campaigns have been active for over seven years, with some extensions still in the trust-building phase, posing significant risks to user privacy and corporate security.

via The Hacker News|

#browser-extensions #cyber-espionage #cybersecurity

world3 months ago•7 min saved

Salt Typhoon Reveals China's Growing Cyber Espionage Threat

China's Ministry of State Security has become a major cyber power, conducting sophisticated operations like the Salt Typhoon intrusion, which stole data from numerous countries, highlighting its strategic cyber capabilities and the leadership's focus on technological and cyber espionage advancements under Xi Jinping.

via The New York Times|

#china #cyber-espionage #cybersecurity

world4 months ago

FBI and Allies Expose China-Linked Cyber Campaigns Targeting Global Critical Infrastructure

The FBI has issued a warning that a Chinese hacking campaign has expanded its reach to 80 countries, highlighting a significant global cybersecurity threat and ongoing cyber espionage activities.

via The Washington Post|

#chinese-hacking #cyber-espionage #cybersecurity

cybersecurity5 months ago•2 min saved

North Korean Hackers Use JPEG Files to Bypass Windows Security

North Korea's APT37 group is using sophisticated malware embedded in JPEG images and leveraging steganography to evade detection and attack Windows systems, primarily in South Korea. The malware employs multi-stage shellcode injection, fileless techniques, and cloud API abuse for command and control, highlighting the need for advanced behavioral detection and proactive security measures.

via CyberSecurityNews|

#apt37 #cyber-espionage #cybersecurity

technology5 months ago•2 min saved

Microsoft SharePoint Vulnerabilities Exploited in Global Cyberattacks

Microsoft announced that a cyber-espionage group called Storm-2603 is exploiting vulnerabilities in SharePoint server software to deploy ransomware, leading to at least 400 known victims including U.S. government agencies, marking a significant escalation in the campaign.

via Reuters|

#cyber-espionage #hacking #microsoft

technology5 months ago•3 min saved

Microsoft's SharePoint Security Flaws and Global Cyber Threats

Microsoft knew of a critical SharePoint security flaw identified in May but released a patch that failed to fully fix it, leading to a global cyber espionage operation targeting around 100 organizations, with Chinese hacking groups exploiting the vulnerability despite Microsoft's efforts to patch it.

via Reuters|

#cyber-espionage #microsoft #patch-failure

technology6 months ago•0 min saved

Preparing for Quantum Day: Risks and Protections for Crypto

The article discusses the emerging risks associated with advancing quantum technology, highlighting potential threats to cybersecurity and the possibility of a 'cyber doomsday' scenario as these technologies become more prevalent.

via politico.eu|

#cyber-espionage #cyber-threats #cybersecurity

cybersecurity7 months ago•3 min saved

Chinese APT41 Uses Google Calendar for Stealthy Malware C2 Operations

Chinese state-sponsored group APT41 exploited Google Calendar for malware C2 operations, using a sophisticated multi-stage malware to target government entities and organizations worldwide, with Google taking measures to neutralize the campaign.

via The Hacker News|

#apt41 #command-and-control #cyber-espionage

cybersecurity1 year ago•1 min saved

U.S. Urges Encrypted Apps Amid Chinese Telecom Hacks

A Chinese hacking group known as "Salt Typhoon" has stolen a significant amount of Americans' metadata in a cyber-espionage campaign, according to a senior US official. The hackers targeted multiple telecommunications companies, including Verizon, AT&T, and T-Mobile, although some companies reported no customer data compromise. The stolen metadata, which includes call records but not content, can reveal detailed personal information. The US government, prioritizing the issue, has briefed President Biden and held a classified briefing for senators on the matter.

via The Guardian|

#china #cyber-espionage #cybersecurity

cybersecurity1 year ago•2 min saved

Russian Hackers Exploit Zero-Day Flaws in Firefox and Windows

A Russian hacking group, identified as "RomCom," has exploited two zero-day vulnerabilities to target Firefox and Tor browser users on Windows PCs, primarily in Europe and North America. The attacks, which began in October, involve a malicious web page that installs a backdoor on victims' PCs without user interaction. The vulnerabilities, CVE-2024-9680 and CVE-2024-49039, have been patched by Mozilla, Tor, and Microsoft. However, users who haven't updated remain at risk. ESET links these attacks to RomCom's previous exploits.

via PCMag|

#cyber-espionage #cybersecurity #firefox

cybersecurity1 year ago•1 min saved

US Warns of Escalating Cyber Threat from Chinese Hackers

Chinese hackers are reportedly embedding themselves in U.S. critical infrastructure to gain an advantage in potential conflicts, according to Morgan Adamski of U.S. Cyber Command. This follows a significant cyberespionage operation, "Salt Typhoon," which targeted U.S. telecommunications, compromising call records and communications of key officials. The Chinese government denies involvement, and the Chinese Embassy has not commented on the allegations.

via Newsmax|

#chinese-hackers #cyber-espionage #cybersecurity

cybersecurity1 year ago•7 min saved

Russian Spies Exploit Wi-Fi for Unprecedented Network Hopping Hack

Russian military hackers, part of the GRU, have developed a novel Wi-Fi hacking technique called a "nearest neighbor attack," allowing them to breach networks remotely without leaving Russian soil. This method involves hacking into a nearby network and using its devices to access the target network, as discovered by cybersecurity firm Volexity during a 2022 investigation in Washington, DC. The attack highlights the evolving threat of cyber espionage and the need for enhanced Wi-Fi security measures.

via WIRED|

#apt28 #cyber-espionage #cybersecurity

cybersecurity1 year ago•3 min saved

T-Mobile Breach Tied to Chinese State-Sponsored Hackers

T-Mobile has been targeted by a cyber-espionage campaign linked to Chinese state-sponsored hackers known as Salt Typhoon, which also affected other major U.S. telecom providers. The breach focused on wiretap systems used for law enforcement surveillance, compromising sensitive communications involving high-ranking U.S. officials. While T-Mobile reports no significant impact on customer data, the incident underscores vulnerabilities in the telecommunications sector and the need for enhanced security measures. T-Mobile is collaborating with federal authorities to address the breach.

via Forbes|

#chinese-hackers #cyber-espionage #cybersecurity

cybersecurity1 year ago•1 min saved

Chinese Hackers Breach T-Mobile in Major Telecom Espionage

T-Mobile was among several telecommunications companies targeted in a Chinese cyber-espionage operation, according to The Wall Street Journal. Hackers linked to a Chinese intelligence agency breached T-Mobile's network to spy on high-value intelligence targets. While T-Mobile claims no significant impact on its systems or customer data, the FBI and CISA reported that China-linked hackers intercepted surveillance data from U.S. telecom companies. Beijing has denied these hacking allegations.

via CNBC|

#chinese-hackers #cyber-espionage #cybersecurity

cybersecurity1 year ago•0 min saved

FBI and CISA Warn of Extensive Chinese Cyber-Espionage on US Telecoms

The FBI and CISA have identified a significant cyber espionage campaign by the People's Republic of China targeting U.S. telecommunications infrastructure. PRC-affiliated actors have compromised networks at multiple telecom companies, stealing customer call records and private communications, particularly of individuals involved in government or political activities. The agencies are providing technical assistance and sharing information to help potential victims and strengthen cyber defenses. Organizations suspecting they are affected are urged to contact their local FBI field office or CISA.

via Federal Bureau of Investigation|

#china #cisa #cyber-espionage