Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw post, april 27, 2024april 30, 2024 Cybersecurity researchers have discovered a targeted operation against Ukraine that has been found leveraging a nearly seven-year-old flaw in Microsoft Office to deliver Cobalt Strike on compromised systems. The attack chain, which took place at the end of 2023 according to Deep Instinct, employs a PowerPoint slideshow file (“signal-2023-12-20-160512.ppsx”) as… Continue Reading
Suddenly, Chinese Spies Seem to Be Popping Up All Over Europe post, april 27, 2024april 30, 2024 One of the men, a young Briton known for his hawkish views on China, worked as an aide to a prominent member of the British Parliament. Another, a German citizen of Chinese descent, was an assistant to a member of the European Parliament representing Germany’s far right. While from different… Continue Reading
Russian hacking group claims responsibility for cyberattack on Indiana wastewater plant post, april 25, 2024april 26, 2024 The “People’s Cyber Army of Russia” took credit last Saturday for the incident on the messaging app Telegram. A message accompanying the video read: “We continue to look partially cover our series of work on US infrastructure. Today, we’ll look at Indiana. Let’s consider the work on municipal water treatment… Continue Reading
Iran Dupes US Military Contractors, Gov’t Agencies in Cyber Campaign post, april 24, 2024april 26, 2024 The US Departments of Treasury and State are among those compromised in the elaborate campaign, which lasted from 2016 to 2021 according to a US Justice Department indictment unsealed this week. Various defense contractors with high-level security clearances, a New York-based accounting firm, and a New York-based hospitality company were… Continue Reading
MITRE admits ‘nation state’ attackers touched its NERVE R&D operation post, april 22, 2024april 26, 2024 In a cautionary tale that no one is immune from attack, the security org MITRE has admitted that it got pwned.… Continue Reading
Federal warning highlights cyber vulnerability of US water systems post, maart 20, 2024april 26, 2024 The White House urged operators of water and wastewater systems to review and beef up their security controls against attacks by Iran- and China-based groups. Continue Reading
Microsoft confirms Russian spies stole source code, accessed internal systems post, maart 8, 2024april 26, 2024 Still ‘no evidence’ of any compromised customer-facing systems, we’re told Microsoft has now confirmed that the Russian cyberspies who broke into its executives’ email accounts stole source code and gained access to internal systems. The Redmond giant also characterized the intrusion as “ongoing.” Continue Reading
Possible China link to Change healthcare ransomware attack post, maart 7, 2024april 26, 2024 Alleged crim bought SmartScreen Killer, Cobalt Strike on dark-web markets A criminal claiming to be an ALPHV/BlackCat affiliate — the gang responsible for the widely disruptive Change Healthcare ransomware infection last month — may have ties to Chinese government-backed cybercrime syndicates.… Continue Reading
Seoul spies say North Korea hackers stole semiconductor secrets post, maart 5, 2024april 26, 2024 The DPRK is using cyberattacks to steal designs and other data from South Korean microchip manufacturers, according to Seoul’s National Intelligence Service. Continue Reading
Taiwan’s biggest telco breached by suspected Chinese hackers post, maart 1, 2024april 26, 2024 Stolen data from Chunghwa Telecom — including government-related details — are up for sale on the Dark Web, the Taiwanese defense ministry confirms. Continue Reading