#XynikEspionage

India-Linked SideWinder Group Pivots to Hacking Maritime Targets

by

July 31, 2024 at 02:01AM A cyber-espionage group linked to India, known as SideWinder, has expanded its targeting to compromise computers and networks at maritime facilities in countries including those around the Mediterranean Sea. The group uses spear-phishing with fake documents and exploits older vulnerabilities. The attacks aim at intelligence-gathering and cyber espionage in regions … Read more

Microsoft Graph API Emerges as a Top Attacker Tool to Plot Data Theft

by

May 2, 2024 at 06:08AM Nation-state espionage is increasingly using Microsoft’s services for their command-and-control needs, finding it more economical and effective than maintaining their own infrastructure. For example, Symantec discovered “BirdyClient,” a malware leveraging Microsoft Graph to operate through OneDrive. Multiple groups, including APT37 and Cozy Bear, have used this technique, requiring organizations to … Read more