Cyber-Espionage News, Articles and Updates

Wikileaks releases CIA tool set which help malware onto air-gapped PCs

WikiLeaks on Thursday dumped more leaked CIA documents with its latest Vault 7 disclosures, this time publishing materials from a tool suite called Brutal Kangaroo that allows attackers to indirectly infiltrate a closed network or air-gapped computer using a compromised flash drive.

How to respond to cyber-threats if you use managed IT service providers

Julia Bishop discusses a recent report on the risk posed by APT10 and actions companies should take to respond to such threats if they use managed IT service providers.

Russian hackers breached electoral systems of 39 US states

Russian hackers reportedly breached the electoral systems of at least 39 states during the summer and fall of 2016 accessing software designed to be used by poll workers on Election Day.

Anti-virus defences were no wall against China-based email attacks

The grim success of the China-based APT10 hackers in stealing huge volumes of confidential data from organisations around the globe has revealed a sickening reality says Greg Sim.

The rise of nation state attacks - with intelligence gathering the aim

Mark Loman discusses how nation-state attackers with access to the right tools, time and cash can tailor-make their attack code to bypass security products completely.

Multiple groups likely collaborating on Shamoon

Multiple hacker groups may be collaborating on behalf of a nation-state actor, according to a new report.

APT 10's Cloud Hopper campaign has been exposed

The group behind the attacks, APT10, has targeted Canada, Brazil, France, Norway, Finland, Switzerland, South Africa, Australia, Japan, and India.

UK and US warn airports and nuclear facilities could be targets of cyber-attacks

Airports and nuclear power plants in the US and UK are on alert for cyber-attacks after governments in both countries issued alerts.

Cyber-espionage spear-phishing campaign hits Saudi Arabia

Spear-phishing attacks aimed at placing cyber-espionage malware on government computers using an infected Word document are being blamed on about a dozen Saudi Arabian agencies.

Hired Hackers target driverless car tech prompting threat sharing colab

A group of cyber mercenaries targeted Baidu's driverless car technology prompting the tech company to beef up security.

IT pros fear cyber-espionage may be top 2017 threat

A recent Trend Micro study found 20 percent of IT leaders believe cyber-espionage will be the top threat of 2017.

Reports cast suspicion on Trump server, political consultant

One report suggests a possible computer server connection between the Trump organisation and a Russian bank, while another alleges that a Trump advisor was in contact with Russian hackers during the presidential election.

Obama ramped up cyber-attacks to disrupt North Korea missile program

Proponents of the campaign point to a number of missile launches that have failed—either missing their mark or exploding in midair—as the program's success.

No secret anymore: Russia touts cyber force

Russia has a cyber army. The announcement was made by defence minister Sergey Shoygu.

Trump gets mixed reviews on cyber-security, one month in

The administration has hinted at cyber-security policy, but no definitive strategy has emerged.

UK and China agree coordination on cyber-security issues

Sir Mark Lyall Grant and Wang Yongqing focused on cooperation on cyber-security, counter-terrorism and countering violent extremism, and organised crime.

Uber drives down alert fatigue with customised data sets

To combat alert fatigue among its security analysts, transportation service Uber applies specially customised data sets to flagged incidents to help distinguish between genuine threats and non-malicious activities.

Visitors infected by compromised foreign embassy and ministry websites

An unknown actor whose targets and tactics resemble those of a Russian APT group has been compromising the websites of foreign embassies, ministries and organisations, in an attempt to infect certain site visitors with malware.

Confusion, theories abound as Russia stays silent on cyber-security treason arrests

Following the arrests of four cyber experts in Russia on treason charges, conflicting theories have emerged, as observers speculate if the case is connected to the hacking of US political institutions in the run-up to the 2016 election.

Researchers tentatively link Greenbug cyber-spy group to Saudi Shamoon attackers

Researchers may have found a tenuous link between a cyber-espionage organisation's credentials-stealing Trojan and the Shamoon hacking group that's been targeting Saudi energy companies with Disttrack disk-wiping malware.

Buzz off, hackers! Fruitfly spyware infests Mac-based biomedical facilities

A newly discovered Mac malware with some very old coding has likely been targeting biomedical research facilities for at least two years without detection.

FireEye report: hacking group APT28 and their tradecraft

Amidst a number of shocking revelations in relation to the Trump presidency, FireEye has released a report detailing some of the tools and tactics used by Russian hackers who are believed to be part of APT28 - a group of Russian state-back hackers - who are believed to be behind some of the year's headline grabbing hacks including the John Podesta emails, the WADA hack and the breach of the DNC during the election period.

Russia's 'Grizzly Steppe' kicked off with 'spear-phishing campaign' against DNC

A Russian APT began attacking the computer networks of the US Democratic National Committee with a series of spear-phishing emails in the summer of 2015, according to a US intelligence agency report.

Chinese hacking group allegedly behind ThyssenKrupp hack

According to the German Federal Office for Information Security (BSI), the group is well known to them, and the BSI says several other businesses are under attack.

Hacktivist or state-actor? Behind the mask of threat actors

It is essential that you can tell the difference between a government hacker and an individual hacktivist, or how can you react appropriately?

German steel firm's IP stolen in cyber-attack

ThyssenKrupp, a major supplier of steel to Germany's automotive sector, has announced today that some of its trade secrets were stolen in a cyber-attack earlier in the year.

UPDATE: Trump taps Pompeo, Flynn and Sessions for key security posts; James Clapper to resign

President-elect Trump has tapped Rep. Mike Pompeo (R-Kan.) as CIA director, and retired Army Lt. Gen. Michael Flynn as national security advisor, and Sen. Jeff Sessions (R-Ala.) as attorney general.

Cross border computer probes gets nod in Switzerland

The Swiss intelligence service received permission to begin tapping phones and monitoring emails following a vote in the nation's parliament and approval by a public referendum.

Clapper: Russia has a long history of trying to interfere with elections

Director of national intelligence James Clapper said there have been previous instances of Russian attempts to influence US elections going back to the 1960s.