#CyberThreats2024

APT28 Targets Diplomats with HeadLace Malware via Car Sale Phishing Lure

by

August 2, 2024 at 12:42PM A Russia-linked threat actor, APT28, has been using a car-for-sale phishing lure to deploy the HeadLace backdoor in a campaign targeting diplomats since March 2024. The attacks involve the use of a legitimate service called webhook[.]site to deliver malicious files and are linked to previous campaigns by APT28. The tactics … Read more

Cyber Espionage Alert: LilacSquid Targets IT, Energy, and Pharma Sectors

by

May 30, 2024 at 12:09PM Summary: A new cyber espionage threat actor called LilacSquid has been conducting targeted attacks in the US, Europe, and Asia since 2021, aiming to steal data from various sectors. The actor deploys a mix of open-source tools and custom malware, including a distinctive variant of Quasar RAT codenamed PurpleInk. This … Read more