Conti Ransomware Shuts Down Operation, Rebrands Into Smaller Units

Advanced Intel's Yelisey Boguslavskiy told BleepingComputer that instead of rebranding as another large ransomware operation, the Conti leadership has instead partnered with other smaller ransomware gangs to conduct attacks.

Lazarus hackers target VMware servers with Log4Shell exploits

The North Korean hacking group known as Lazarus is exploiting the Log4J remote code execution vulnerability to inject backdoors that fetch information-stealing payloads on VMware Horizon servers.

Chinese ‘Space Pirates’ APT Hacking Russian Aerospace Firms

The Space Pirates APT group has been seen targeting government agencies and enterprises involved in IT services, aerospace, and electric power industries located in Russia, Georgia, and Mongolia.

Bangladesh Added to Targets in Bitter APT’s Ongoing Campaign

Bangladesh Added to Targets in Bitter APT’s Ongoing Campaign - Cybersecurity news - Threat Actors
Cisco Talos revealed an ongoing campaign operated by the APT actor since August 2021. The campaign has been launched against an elite unit of the Bangladeshi government via spear-phishing emails.

Override Panda Targets South Asia in New Espionage Campaign

Override Panda Targets South Asia in New Espionage Campaign - Cybersecurity news - Threat Actors
Chinese APT Override Panda, aka Naikon, was found launching new phishing attacks to collect intelligence from ASEAN members to steal sensitive data. The recent campaign uses a weaponized Office document to start the infection kill chain. Organizations are suggested to focus on protecting their sens ... Read More

Wizard Spider Hackers Hire Cold Callers to Scare Ransomware Victims Into Paying Up

PRODAFT says that Wizard Spider focuses on compromising enterprise networks and "has a significant presence in almost every developed country in the world, and many emerging economies as well."

Cobalt Mirage Targets Entities Globally Using BitLocker and DiskCryptor

Cobalt Mirage Targets Entities Globally Using BitLocker and DiskCryptor - Cybersecurity news - Threat Actors
Iran-linked Cobalt Mirage, aka Charming Kitten, is allegedly targeting organizations in the U.S., Israel, Europe, and Australia and dropping BitLocker and DiskCryptor strains. Hackers mark initial access by scanning internet-facing servers exposed to publicized flaws in Fortinet appliances and Exch ... Read More

Killnet hackers announce Russian cyber attacks on UK for standing up to Putin's war

Killnet hackers have announced global cyberattacks against a number of countries - including the UK, US, Germany, Italy, Latvia, Romania, Lithuania, Estonia, Poland, and Ukraine - for standing up to Vladimir Putin's war in Ukraine.

These ransomware attackers sent their ransom note to the victim's printer

Researchers have detailed a string of cyberattacks involving ransomware which took place in early 2022 to an Iranian hacking group they refer to as Cobalt Mirage – also known as APT35, Charming Kitten, Phosphorus, and TA453 by other research groups.

APT Gang Sidewinder Goes on Two-year Asia Attack Spree

SideWinder's operatives even ran two versions of its obfuscation techniques over several months, and appear to have migrated from an older and less stealthy version to its current malware.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags