December 11, 2024 at 05:49AM The US government has charged Chinese national Guan Tianfeng for his involvement in hacker attacks on Sophos firewalls, compromising around 81,000 devices globally. The attacks exploited zero-day vulnerabilities and were linked to Sichuan Silence Information Technology. Sanctions against Guan and the company were also announced, with rewards offered for information. … Read more
August 29, 2024 at 09:05AM Between November 2023 and July 2024, the Russian state-sponsored APT29 group, also known as “Midnight Blizzard,” utilized iOS and Android exploits in cyberattacks on Mongolian government websites. Google’s Threat Analysis Group identified the group’s use of n-day flaws that remain effective on devices not updated. APT29’s exploits overlapped with those … Read more
July 19, 2024 at 11:36AM The sophisticated Chinese hacking group GhostEmperor has reappeared after a two-year hiatus with updated and advanced tactics, as revealed by cybersecurity firm Sygnia. The group targeted telecommunications and government entities in Southeast Asia, using customized malware and evasion methods. The recent intrusion involved an evolved attack chain and indicated the … Read more
June 6, 2024 at 09:40AM Google and Microsoft warn of high cyber threat risk for the 2024 Paris Olympics, particularly from Russian threat actors. Threats include espionage, disruption, and financially motivated activities targeting event organizers, infrastructure, and spectators. State-sponsored groups from China, Iran, and North Korea represent a moderate to low risk. Microsoft observes malign … Read more
April 3, 2024 at 11:57AM The U.S. Cyber Safety Review Board criticized Microsoft for security lapses leading to breaches in Europe and the U.S. The DHS found the breach preventable and faulted Microsoft for operational and strategic decisions. The breach occurred due to a validation error in Microsoft’s source code. Recommendations include modern control mechanisms … Read more
February 15, 2024 at 11:05AM OpenAI removed state-sponsored threat groups’ accounts from Iran, North Korea, China, and Russia, misusing its ChatGPT chatbot for malicious purposes. Microsoft provided key information, and the threat groups exploited ChatGPT for a variety of activities including research, social engineering, and intelligence gathering. OpenAI and Microsoft aim to monitor and disrupt … Read more