August 29, 2024 at 12:24PM A non-profit supporting Vietnamese human rights has been targeted by a multi-year cyber espionage campaign attributed to APT32. The group uses various malware delivery methods, including spear-phishing and watering hole attacks. The intrusion has resulted in the compromise of several hosts and the theft of sensitive information, with a focus … Read more
November 14, 2023 at 03:27AM Vietnamese threat actors behind the Ducktail stealer malware targeted marketing professionals in India between March and October 2023, aiming to hijack Facebook business accounts. Unlike previous campaigns, this one used Delphi as the programming language. The attackers used sponsored ads on Facebook to propagate malicious ads and deploy malware, gaining … Read more
October 12, 2023 at 03:42AM A cyber attack campaign named Stayin’ Alive is targeting government and telecom entities in Asia using basic backdoors and loaders for delivering malware. The campaign’s infrastructure is similar to that used by ToddyCat, a China-linked threat actor known for cyber assaults in Europe and Asia. The attacks start with a … Read more
October 10, 2023 at 07:00AM A previously unknown threat actor named Grayling has been identified as the culprit behind a series of cyberattacks on organizations in Taiwan, including manufacturing, IT, and biomedical sectors. Symantec’s Threat Hunter Team discovered the attacks, which began in February and utilized a distinct DLL side-loading technique to deploy payloads. The … Read more