APTs/cyberespionage news & analysis | SC Media

APTs/cyberespionage

Trade minister hack led to trade secrets leak before U.K. election

The hack of a U.K. trade minister’s email account – the result of a spear phishing campaign likely engineered by Russian operatives –  led to the leak of U.S.-U.K. trade documents and perpetuated a disinformation campaign credited with influencing the 2019 U.K. election. Hackers were able to successfully access the email of Trade Minister Liam…

China targets networks with new Taidoor malware attacks

Wielding a new remote access trojan (RAT) dubbed Taidoor, Chinese government-supported hackers are behind a series of cyberespionage campaigns. Although it offered no details on the possible targets, CISA warned of the malware variants, noting that “the FBI has high confidence that Chinese government actors are using [them] in conjunction with proxy servers to maintain…

Media companies need to lock down content systems as fake news invades

Social media companies have started to become more efficient at recognizing and taking down fake accounts designed to spread fake news and propaganda. But operators of traditional media websites and other digital platforms that regularly publish vital news information to the public may also want to train themselves be on the lookout for disinformation secretly…

Broadened CIA cyberattack powers put businesses on alert

The greater business community should be on higher alert for cyberattacks by nation-state actors after the report last week that President Trump signed a “presidential finding” around cyberwarfare that gives the CIA broader powers to launch cyberattacks against U.S. adversaries. After all, following the Stuxnet attack by the U.S. in 2009 the Iranians responded not…

Chinese-made drone app may be spying on Americans

An Android application that controls a drone manufactured by China-based Da Jiang Innovations (DJI) contains a self-update feature that bypasses the Google Play Store, thus creating the ability for the app to transmit sensitive personal information to DJI’s servers or possibly the Chinese government. The DJI GO 4 Android app has been designed for use…

Dacls RAT’s goals are to steal customer data and spread ransomware

The Dacls remote access trojan that is capable of attacking Windows, Linux and macOS environments has been used to distribute VHD ransomware and to target customer databases for attempted exfiltration, according to researchers. Kaspersky on Wednesday revealed this latest intel on Dacls in a company blog post and corresponding press release that also detailed an…

Justice charges Chinese nationals in hacking campaign

Two Chinese hackers working with the Ministry of State Security, and charged by the Justice Department on Tuesday, allegedly ran a more-than-decade-long campaign hacking into the systems of hundreds of companies, governments, NGOs, dissidents, human rights activists and even clergy, nicking intellectual property and proprietary business research and more recently targeting companies developing COVID-19 vaccines,…

Biden will punish foreign election interference, hacking

Former Vice President and presumptive Democratic presidential nominee Joe Biden said he would take harsh action against any nation-state that attempted to meddle in the U.S. presidential election, “whether by hacking voting systems and databases, laundering money into our political system, systematically spreading disinformation, or trying to sow doubt about the integrity of our elections.”…

Legacy ICS puts critical infrastructure at risk

By using search engines dedicated to scanning all open ports, or scanning the ports themselves, hackers can remotely take control of critical private and public U.S. infrastructure run largely by industrial control systems (ICS) that weren’t built with security in mind. American water and energy providers are particularly vulnerable to cyberattack because their legacy ICSs…

Next post in Security News