‘Tropic Trooper’ Reemerges to Target Transportation Outfits

Analysts warn that the attack group, now known as ‘Earth Centaur,’ is honing its attacks to go after transportation and government agencies. They’ve been an active threat group since 2011,…

Collecting In the Dark: Tropic Trooper Targets Transportation and Government

Trend Micro – Trend Micro – While analyzing samples, we found that the C&C server was already inactive. Without knowing the traffic between SmileSvr and C&C server, we could not…

Stealthy ‘WIRTE’ Gang Targets Middle Eastern Governments

Kaspersky researchers suspect that the cyberattackers may be a subgroup of the politically motivated, Palestine-focused Gaza Cybergang. A threat actor tracked as WIRTE has been assaulting Middle East governments since…

Reply-Chain Email Cyberattacks Hit Ikea’s Email Systems

Hackers are making use of stolen reply-chain emails in a wave of phishing attacks targeting Ikea’s employees. Reply-Chain Email Cyberattacks Targeting Ikea According to BleepingComputer publication, the company has started…

Squirrelwaffle Exploits ProxyShell and ProxyLogon to Hijack Email Chains

Trend Micro – Trend Micro – Squirrelwaffle Exploits ProxyShell and ProxyLogon to Hijack Email Chains Exploits & Vulnerabilities Squirrelwaffle is known for using the tactic of sending malicious spam as…

QAKBOT Loader Returns With New Techniques and Tools

Trend Micro – Trend Micro – QAKBOT Loader Returns With New Techniques and Tools Malware QAKBOT operators resumed email spam operations towards the end of September after an almost three-month…

Apple macOS Flaw Allows Kernel-Level Compromise

‘Shrootless’ allows bypass of System Integrity Protection IT security measures to install a malicious rootkit that goes undetected and performs arbitrary device operations. Apple has patched a vulnerability in macOS…

SolarWinds hackers, Nobelium, hit cloud providers and resellers

So far, Microsoft has informed 140 companies about the new attack campaign being carried out by Nobelium 14 of which were compromised by the group. The IT security researchers at…

SolarWinds APT Targets Tech Resellers in Latest Supply-Chain Cyberattacks

The Nobelium group, linked to Russia’s spy agency, is looking to use resellers as a path to infiltrate their valuable downstream customers – and it’s working. The SolarWinds attackers –…

Latest Russian espionage activity is broader than SolarWinds-style hacking effort, Microsoft's Tom Burt says

Written by Tim Starks Oct 25, 2021 | CYBERSCOOP An apparent espionage campaign from the same Russian hacking group that breached the U.S. federal contractor SolarWinds in 2020 differed from…