WIRTE Hacker Group Targets Government, Law, Financial Entities in Middle East

An analysis of the campaign, toolset, and methods employed by the adversary has also led the researchers to conclude with low confidence that the WIRTE group has connections to the Gaza Cybergang.

Iranian Hackers Abusing Known Bug in Microsoft's MSHTML

Iranian Hackers Abusing Known Bug in Microsoft's MSHTML - Cybersecurity news - Threat Actors
A new Iranian actor was spotted abusing an RCE flaw in Microsoft MSHTML to target Farsi-speaking people globally and stealing their Google and Instagram credentials. The attacks started in July via spear-phishing emails that targeted Windows users with Winword attachments. Exports recommend organiz ... Read More

APT C-23 Targeting Android Users in Middle East with Spyware

APT C-23 Targeting Android Users in Middle East with Spyware - Cybersecurity news - Threat Actors
Sophos is warning against an evolved version of an Android spyware, allegedly used by an APT group called C-23, targeting individuals in the Middle East. It spreads via a download link in a text message sent to the target’s phone. Users are requested to a lways update Android OS and applications v ... Read More
November 26, 2021

The Record by Recorded Future

North Korean state-sponsored hackers posed as Samsung recruiters and sent fake job offers to employees at South Korean security companies that sell anti-malware software, Google said this week.
November 24, 2021

The Record by Recorded Future

An Iranian threat actor discovered earlier this year is responsible for raids against U.S. targets designed to hoover up Gmail and Instagram credentials, according to research by SafeBreach.

RedCurl Group Strikes Again With Updated Toolset

RedCurl Group Strikes Again With Updated Toolset - Cybersecurity news - Threat Actors
RedCurl group has returned after a seven-month break and has been spotted targeting potential victims with updated toolsets. Hackers focus on espionage and collecting sensitive information from targeted entities. Organizations are suggested to deploy the right security measures, including encryptio ... Read More

TA406 Accelerates Attacks; Launch Several Campaigns

TA406 Accelerates Attacks; Launch Several Campaigns - Cybersecurity news - Threat Actors
Security researchers issued an in-depth report on malicious activities of TA406, an alleged North Korean group. Its attack volume has been rising since the beginning of this year. As the year commenced, its activities were ramped up as journalists, foreign policy experts, and non-governmental orga ... Read More

Latest Aggah Campaign Hijacks Clipboards for Stealing Cryptocurrencies

Latest Aggah Campaign Hijacks Clipboards for Stealing Cryptocurrencies - Cybersecurity news - Threat Actors
In a new attack campaign, the Aggah threat group is deploying clipboard hijacking code to replace a victim’s cryptocurrency address with an address to redirect cryptocurrency transactions. Researchers observed seven different cryptocurrency addresses in use in the campaign. To stay protected from s ... Read More
November 22, 2021

Conti ransomware gang suffers security breach

The Conti ransomware group has suffered an embarrassing data breach after a security firm was able to identify the real IP address of one of its most sensitive servers and then gain console access to the affected system for more than a month.

Microsoft Reports Evolution of Iranian Hacking Groups

Microsoft Reports Evolution of Iranian Hacking Groups - Cybersecurity news - Threat Actors
From September 2020, the tech giant has been tracking six Iranian hacking groups (DEV-0146, DEV-0227, DEV-0198, DEV-0500, Rubidium, and Phosphorus) spreading ransomware and stealing data.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags