September 19, 2024 at 09:01PM Geopolitical tensions have led to a surge in cyberattacks on US and allied organizations by North Korean cyber-espionage group Kimsuky. The group has successfully exploited poorly configured DMARC policies for spear-phishing campaigns targeting high-profile individuals and organizations. Ensuring properly configured DMARC is critical to defend against these attacks and protect … Read more
May 23, 2024 at 06:12AM A Chinese state-aligned threat group, known as Diplomatic Specter, has been conducting a brazen espionage campaign across the Middle East, Africa, and Southeast Asia since late 2022. They target high-level government and military entities to obtain sensitive information. The group exploits vulnerabilities, uses various malicious tools, and exfiltrates emails and … Read more
May 3, 2024 at 05:09PM The 2024 Paris Olympics face cybersecurity challenges despite improved protection compared to previous events. Outpost24 identified security gaps including open ports, SSL misconfigurations, and domain squatting, giving attackers opportunities. France’s ANSSI agency is preparing for cyber threats, but diverse, sophisticated attacks are expected, influenced by geopolitics. Securing the rapidly changing … Read more
March 12, 2024 at 03:45AM A South Korean national, Baek Won-soon, has been detained by Russia on cyber espionage charges and transferred from Vladivostok to Moscow for investigation. It is alleged that he handed over classified information to foreign intelligence agencies. This development follows growing geopolitical ties between Russia and North Korea and the recent … Read more
February 9, 2024 at 10:20AM The “Big Four” nations – Russia, China, Iran, and North Korea – pose significant cyber and geopolitical threats to the West. Their activities range from cyber espionage to influence operations and financial gain. In the next year, cybersecurity offenses and cyber-influence campaigns are expected to rise, particularly targeting democratic nations’ … Read more
December 13, 2023 at 05:36AM Ukraine’s largest telecom operator, Kyivstar, was hit by a cyber attack, causing disruptions in mobile and internet services. The attack, linked to the conflict with Russia, led to nationwide impacts. While the company works to restore services, it assured compensation for affected users and warned against potential scams. Meanwhile, pro-Russia … Read more
November 21, 2023 at 02:06AM The China-linked cyber espionage group Mustang Panda targeted a Philippines government entity using legitimate software to sideload malicious files. Mustang Panda, also known as Bronze President and other aliases, is a Chinese advanced persistent threat (APT) that has been active since at least 2012. The group has targeted NGOs and … Read more
November 13, 2023 at 01:06AM Chinese hacking groups have been found targeting 24 Cambodian government organizations in a long-term espionage campaign. The cyber activity is believed to align with China’s geopolitical goals and involves leveraging strong relations with Cambodia to expand naval operations in the region. The groups have been using fake cloud backup and … Read more
October 13, 2023 at 11:24AM A new cyber attack campaign called PEAPOD has targeted EU military personnel and political leaders working on gender equality. Cybersecurity firm Trend Micro has attributed the attacks to a threat actor known as Void Rabisu, which is associated with Cuba ransomware. The group conducts both financial motivated and espionage attacks, … Read more
October 13, 2023 at 03:59AM Void Rabisu, a threat actor associated with financially motivated ransomware attacks, has shifted its focus to targeted campaigns on Ukraine and countries supporting Ukraine. They have developed a new variant called ROMCOM, which they used in campaigns targeting EU military personnel and political leaders working on gender equality initiatives. The … Read more