Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence

June 18, 2024 at 12:36PM A state-sponsored threat actor, Velvet Ant, maintained persistent access to a victim organization’s network for three years using a legacy F5 BIG-IP appliance, deploying various tools and techniques to compromise critical systems and access sensitive data. The cybersecurity firm Sygnia believes they are a China-based threat actor with sophisticated OPSEC … Read more

Russian military hackers target Ukraine with new MASEPIE malware

December 28, 2023 at 12:46PM Ukraine’s CERT warns of a new phishing campaign by APT28, a Russian hacker group known for targeting government and Western entities. The attack, occurring between December 15 and 25, 2023, deploys a new Python malware downloader, ‘MASEPIE,’ via phishing emails. APT28 also uses various tools for data theft and network … Read more