Governments, Telcos Ward Off China’s Hacking Typhoons

December 11, 2024 at 02:06AM Telecommunications firms globally, including in the US, Asia-Pacific, and MENA regions, are targets of Chinese-sponsored cyberattacks, such as those from Salt Typhoon and Volt Typhoon. Experts warn that nations should enhance security measures and adopt encryption to protect communications, as foreign intrusions threaten network privacy and integrity. ### Meeting Takeaways … Read more

Pluralsight Releases Courses to Help Cyber Pros Defend Against Volt Typhoon Hacker Group

August 23, 2024 at 03:51PM Pluralsight unveiled an expert-led course series targeting the sophisticated and persistent state-sponsored cyber group, Volt Typhoon. Directed towards cybersecurity professionals, the series equips learners with tactics and skills to detect and defend against cyberattacks on critical infrastructure. The course path includes seven expert-led courses and six hands-on lab experiences. Sign … Read more

Defending OT Requires Agility, Proactive Controls

July 17, 2024 at 04:35AM Hackers with ties to the Chinese government have gained access to US critical infrastructure, transitioning from espionage to potentially compromising or destroying infrastructure via operational technology. Recent attacks on maritime and water systems signal the need for increased OT security. Three key steps include converging IT and OT security, developing … Read more

Chinese Threat Clusters Triple-Team a High-Profile Asia Government Org

June 5, 2024 at 06:40AM A new Sophos report reveals the extensive collaboration and sophistication of “Operation Crimson Palace,” an attack by three Chinese state-aligned threat clusters targeting a Southeast Asian government organization. Their teamwork involved advanced malware tools and evasion techniques, allowing them to steal sensitive military and political secrets. The report avoids specific … Read more

Researchers Warn of Chinese-Aligned Hackers Targeting South China Sea Countries

May 22, 2024 at 11:19AM Cybersecurity researchers uncovered a new threat group called Unfading Sea Haze, targeting high-level organizations in South China Sea countries. The attackers have ties to Chinese interests, utilize various malware and persistence techniques, and engage in manual data exfiltration, suggesting a focused espionage campaign. The group’s sophisticated arsenal and tactics aim … Read more

North Korea APT Triumvirate Spied on South Korean Defense Industry For Years

April 24, 2024 at 12:35PM North Korea’s APTs have been spying on South Korean defense contractors for at least a year and a half. Andariel, Kimsuky, and the broader Lazarus Group were involved in espionage campaigns, with details released by South Korean police. The announcement came after North Korea conducted its first-ever nuclear counterattack drill. … Read more

Discover 2023’s Cloud Security Strategies in Our Upcoming Webinar – Secure Your Spot

November 17, 2023 at 06:00AM The Hacker News is hosting an exclusive webinar titled ‘Navigating the Cloud Attack Landscape: 2023 Trends, Techniques, and Tactics.’ Led by Jose Hernandez from Lacework Labs, the session will cover Kubernetes security breaches, the Zenbleed vulnerability, cloud supply chain vulnerabilities, and the CloudWizard APT. The webinar aims to provide actionable … Read more

Everest cybercriminals offer corporate insiders cold, hard cash for remote access

October 12, 2023 at 09:57AM The Everest ransomware group is seeking to recruit corporate insiders to gain access to corporate networks directly. The group is offering a percentage of the profits from successful attacks to those who assist in the initial intrusion, promising transparency and confidentiality. Everest is specifically targeting organizations in the US, Canada, … Read more

Chinese ‘Stayin’ Alive’ Attacks Dance onto Targets With Dumb Malware

October 11, 2023 at 05:23PM Chinese APT group “ToddyCat” is using simple but constantly evolving custom backdoors and loaders to target telecommunications organizations in Central and Southeast Asia. The group, previously linked to Chinese espionage operations, uses spear phishing emails with archive files to exploit a DLL sideloading vulnerability. While the malware used by ToddyCat … Read more