Dubious NuGet Package May Portend Chinese Industrial Espionage

March 26, 2024 at 08:07AM A currently available .NET package is suspected to potentially function as a covert backdoor for industrial systems, raising security concerns. Alternatively, it may be harmless. The ambiguity surrounding its purpose presents uncertainties about its safety and integrity. After reviewing the meeting notes, it appears that there is a .NET package … Read more

Sandworm Cyberattackers Down Ukrainian Power Grid During Missile Strikes

November 9, 2023 at 03:08AM The Sandworm APT group, linked to Russia’s Main Center for Special Technologies, used living-off-the-land techniques to cause a power outage in a Ukrainian city in October 2022. The attack coincided with missile strikes. Unlike previous attacks, Sandworm exploited LotL binaries instead of advanced cyber weaponry. This incident highlights the challenge … Read more