Chinese APTs increasingly using ORB networks to mask attack infrastructure
Mandiant reports that it is actively monitoring several ORB networks, with the most notable being SPACEHOP and FLORAHOX.
Cybersecurity News - Page 129
Threat actors exploit vulnerable drivers to disable EDRs in cryptojacking attack
Ghostengine deploys several modules to tamper with security tools, establish a backdoor, and ensure software updates are in place.
Russia’s DoppelGänger campaign manipulates social media to undermine Western support for Ukraine
The campaign uses typosquatted legitimate media outlets and independent news sites to publish disinformation articles.
Hackers target orgs in Ukraine with SmokeLoader malware
Since May 20, the threat actors have launched at least two distinct malware distribution campaigns.
Incognito Market owner arrested in the US, faces life in prison
The marketplace facilitated the sale of more than $100 million worth of illegal narcotics.
Threat actors abusing Foxit PDF Reader flaw to deploy multiple malware variants
The flaw involves Foxit PDF Reader's handling of pop-up messages.
China-linked APT group uses malware to spy on commercial shipping
Mustang Panda infiltrated the computer systems of cargo shipping companies in Norway, Greece, and the Netherlands.
The Grandoreiro malware is back up and running after January disruption
Grandoreiro now targets over 1,500 banks worldwide, spanning more than 60 countries across Central and South America, Africa, Europe, and the Indo-Pacific region.
Chinese nationals indicted in 73M сryptocurrency money laundering scheme
The accused orchestrated an elaborate syndicate that managed the proceeds from “pig butchering” scams.
Cyber security Week in Review: May 17, 2024
In brief: Google, Apple, and Microsoft fix zero-days, BreachForums seized, the US takes actions against North Korean IT workers, and more.
Showing elements 1281 - 1290