Macron campaign hit by massive hack
Both legitimate internal and fake documents were posted on social media by a hacker called EMLEAKS “to sow doubt and disinformation,” Macron’s staff said.
About SC Media
APTs/cyberespionage
Researchers link new backdoor and Mac-based rootkit to Turla spy group
The Turla advanced persistent threat group appears to have recently created both a new multiplatform backdoor malware program called Kazuar, and a MacOS version of its Uroburos espionage rootkit.
Comey ‘slightly nauseous’ that handling of Clinton email probe may have affected election
Comey defended his decision to reveal a renewed interest in Hillary Clinton’s emails right before the election last fall, saying that speaking out was the least damaging than concealing the information.
Report: Multiple groups likely collaborating on Shamoon malware campaign
Analysis of the 2016-2017 Shamoon malware attacks against Saudi organizations suggests that multiple hacker groups may be collaborating on this effort on behalf of a nation-state actor, according to a new blog post and technical analysis published this week by McAfee. “We found that the latest Shamoon campaigns… are connected to other notable campaigns, and…
SentinelOne: In memory attacks loom large, leave little trace
In-memory attacks are on the rise according to Sentinel One, and being increasingly adopted by cyber-crime authors to evade security software.
New Shadow Brokers dump suggests NSA spied on Middle Eastern banks
The Shadow Brokers hacking group responsible for leaking tools and exploits purportedly linked to the U.S. National Security Agency dumped more stolen secrets on Friday, including evidence that the spy agency was likely monitoring the activity of Middle Eastern banks. According to news reports and analysis from security researchers, the latest cache of files linked…
GCHQ first to spot suspicious interactions between Trump affiliates, Russians
Multiple intelligence agencies in the West shared information on interactions between members of Trump’s team and Russian operatives.
Symantec links Vault 7 actor to in-the-wild attacks from ‘Longhorn’ threat group
The hacking tools and techniques leaked in the WikiLeaks Vault 7 dump closely match the m.o. of a threat group that has actively carried out cyberattacks across the globe in recent years, according to Symantec. In a blog post on Monday, the security company detailed what it claims is the first public evidence linking the…
Report: Chinese APT compromised trade association’s website to keep tabs on members
A Chinese APT is accused of compromising the website of the National Foreign Trade Council in an attempt to spy on the trade association’s members.
Flynn offers to talk Russian ties under immunity
Flynn’s lawyer said he would testify if the circumstances were right
Want to read more?
Next post in APTs/cyberespionage
