Cyber Espionage News, Articles and Updates

Pro-ISIS hackers threaten to launch cyber-attack today

Pro-ISIS hackers have reportedly posted a video threatening to launch a global cyber-attack on government, military, and corporate websites today, Thursday, Dec. 8 - with the US as its first target.

US charges members of elite Chinese hacking unit APT3

Federal prosecutors in US charge three Chinese nationals with hacking into Siemens AG, Trimble Inc and Moody's Analytics.

News Feature. Case for the defence - Eugene Kaspersky - not a spy?

In a two-pronged charm offensive Kaspersky Lab, and Eugene Kaspersky in particular, held two consecutive events yesterday to bolster the company's position as a reliable and responsible contributor to global cyber-security.

Former internet troll reveals secrets of Russia's Internet Research Agency

A former insider at Russia's Internet Research Agency (IRA) has divulged details on the online troll factory's operations, stating that he "absolutely" believes the organisation is connected to the Kremlin.

Kaspersky offers alternate theory for how NSA hacking tools were stolen

Kaspersky Lab has released findings from its own internal probe into how Russian cyber spies identified and stole U.S. hacking tools from an NSA contractor's laptop - found evidence that the laptop had been infected with malware.

DHS, FBI analyze North Korean Hidden Cobra, FallChill

The US Department of Homeland Security (DHS) and US Federal Bureau of Investigation (FBI) have officially revealed the IP addresses that they say are used by the North Korean government to administer the RAT FallChill.

NCSC head blames Russia for cyber-attacks

The head of the UK GCHQ's National Cyber Security Centre (NCSC) on Wednesday accused Russia of staging attacks on critical infrastructure and other sectors within the past year.

The role of good data protection in a post cyber world

We now see 'weaponisation' of personal data against civilian groups largely indifferent to observation; as we live our lives online, criminal methods get easier, and rewards greater, cyber-crime is getting organised warns Peter Groucutt.

Microsoft issues warning on Dynamic Data Exchange vulnerability

With APT28 now using Microsoft's Dynamic Data Exchange (DDE) as an attack point, the company has issued an official advisory concerning the practice, along with possible mitigation methods.

Sowbug APT uses Felismus backdoor to for cyber-espionage operations

A previously unknown cyber-espionage group called Sowbug has been found using the Felismus backdoor to spy on several South American and Pacific Rim national governments for the last several years.

Russian hackers altered Clinton campaign email, part of broader initiative

Guccifer 2.0, widely believed to be an alias for hackers tied to the Russian government, apparently altered at least one document stolen from the Democratic National Committee (DNC), adding the designation "confidential" to the email.

Arabic, Urdu, Persian, Pashto InPage processor used by 3 malware families

An exploit in the InPage word processor program was used as an attack vector by three malware families. The word processor supports languages such as Urdu, Persian, Pashto, and Arabic.

US Justice Dept has evidence to charge Russian officials with DNC hack

More than half a dozen Russian government officials are in the US Justice Department's crosshairs and may be facing charges for hacking computers at the Democratic National Committee during the 2016 presidential campaign.

Did Israel deliver spyware using Adobe Flash 0-day in Word document?

A new Adobe Flash zero day exploit has been identified, reportedly used in an attack on 10 October by a threat actor known as BlackOasis and delivered through a Microsoft Word document to deploy the FinSpy commercial spyware.

Hacking container ships is dead easy, warn security consultants

Container ships could be at a very real risk of being hacked, warned security consultants as it is warned that there are security lapses a plenty on the high seas

Iran is being blamed for a cyber-attack against Parliamentary emails

The 23 June 12-hour brute force hack-attack against 9,000 parliamentary email accounts, including minsters and the PM, is now being blamed on Iran.

Defence minister says Poland fended off Russian cyber-attack on businesses

Poland's defence minister reportedly disclosed that his country successfully stopped yet another Russian cyber-attack.

Update: Russian hackers use Kaspersky AV, find NSA info on home device

Home computer of National Security Agency (NSA) worker contained classified data, detected by Russian hackers using Kaspersky AV software.

Cyber-attack threat as important as fighting terrorism says GCHQ

"Digital is the new frontline of national security, commented Rob Norris in response to reports of GCHQ head Jeremy Fleming describing how keeping the UK safe from cyber-attacks is now as important as fighting terrorism.

Kaspersky Labs denies report its software was used to hack NSA

Russian hackers used a Kaspersky Labs antivirus product to steal hacking tools from the National Security Agency (NSA), The Wall Street Journal reported Thursday, subsequently denied by Eugene Kaspersky.

Russians hacked smartphones of 4,000 NATO troops

NATO troops' smartphones are under attack by Russian hackers bent on obtaining information on and exploiting soldiers as well as getting a handle on NATO military capabilities.

NCSC 1st year: 1,000 attacks - 'shocking' level, or 'is that all?'

NCSC annual review: 1,131 attacks reported - thus two significant attacks per day, with 590 classed as significant and more than 30 requiring a cross-government response - industry reaction varies.

Quantum computing breaks encryption next decade; current data at risk

Quantum computing is arriving now and could break public key encryption in a decade - so long term valuable data could be obtained and held now to be decrypted later warns Graeme Park.

Ransomware & ind control systems: never the twain shall meet - until now!

If ransomware infects and encrypts a device you might swap it out for another device, but Andrew Cooke explains, if HMI devices get infected, unplugging equipment isn't always feasible, so the critical thing has to be prevention.

Evidence of Russian Twitter accounts subverting US election criticised

Twitter's revelation that it had identified about 200 accounts that may have broken its terms of service and were possibly linked to nefarious activity geared toward influencing the 2016 US election criticised in Senate.

Kaspersky US government ban - what are the reasons behind the decision?

What is the basis for the ban on Kaspersky products being used by US government authorities? Is it retaliation for Russia's foreign software ban, fear of potential government pressure, intelligence on actual threats - or prejudice?

Tier one incident expected, Government cyber-specs likely - NCSC

We can expect to see a cyber-security incident at a category one level within the next few years. The government specifying what it will buy is an effective way of changing the market - Ian Levy, technical director, NCSC

German elections vulnerable to hacking: 'cyber-warfare' say security pros

Chaos Computer Club warned that software being used to tabulate and transmit vote totals in Germany's upcoming parliamentary elections contains major vulnerabilities; election hacking equals cyber-warfare says security pros

Pacifier APT backdoor components have suspected ties to Russia-linked Turla Group

Bitdefender researchers spotted three new Pacifier APT backdoor components that appear to connect the group's cyber-espionage campaigns against government institutions to the Russia-linked Turla Group.