September 17, 2024 at 06:03AM Chinese national Song Wu faces charges for spear-phishing US government employees to obtain restricted aerospace software. Using fake email accounts, he targeted NASA, Air Force, and other organizations, seeking access to proprietary software and source code. Wu was an employee of a Chinese aerospace company during the spear-phishing campaign and … Read more
February 29, 2024 at 09:27AM Iranian hackers have been utilizing Microsoft Azure cloud infrastructure in attacks on aerospace, aviation, and defense organizations in the Middle East, particularly in Israel and the UAE. The hacking group, UNC1549, has deployed two backdoors named MiniBike and MiniBus. These activities are linked to Iran’s Islamic Revolutionary Guard Corps. Mandiant … Read more
February 28, 2024 at 10:45AM Iran-nexus threat actor UNC1549 attributed to cyber attacks in Middle East, including Israel and U.A.E. Also targeting Turkey, India, and Albania. Suspected activity ongoing since June 2022, using Microsoft Azure infrastructure, spear-phishing emails, and custom backdoors MINIBIKE and MINIBUS for intelligence collection and network access. Evasion methods make detection challenging. … Read more
December 5, 2023 at 09:24AM A new hacker group, AeroBlade, is responsible for a cyberespionage attack on a US aerospace company, according to BlackBerry. Key Takeaways from the Meeting: 1. A cyberattack has been carried out against a U.S.-based aerospace organization. 2. The cyberattack is attributed to a newly identified threat actor named AeroBlade. 3. … Read more
December 4, 2023 at 04:47PM A US aerospace company was the target of a yearlong cyberespionage campaign by a group named “AeroBlade.” Using phishing emails with Word documents, the attackers injected malicious templates to deploy a reverse shell, collecting data and ensuring persistence. Advanced stealth tactics allowed them to evade detection, suggesting a commercial espionage … Read more
December 4, 2023 at 10:01AM BlackBerry uncovered ‘AeroBlade’, a new hacking group targeting the U.S. aerospace sector. Using spear-phishing attacks, AeroBlade deployed reverse-shell payloads for data theft, focusing on cyber espionage. The threat evolved from testing in 2022 to sophisticated attacks in 2023, with unknown origins and objectives speculated to be selling or leveraging stolen … Read more
December 1, 2023 at 08:42AM Recent underreported incidents include hacking attacks on US and European utility sectors, aerospace industry breaches, and the exposure of the leader of the hacker group Killnet. Meeting Takeaways: 1. A discussion took place on a range of underreported stories concerning cybersecurity. 2. There have been attacks on utilities within the … Read more