APTs | SC Media

APTs

APT10

APT41 activity down during China COVID-19 quarantines; massive campaign undeterred

COVID-19 spreading through parts of China did not entirely deter APT41 from carrying out one of the largest campaigns ever conducted by a Chinese cyberespionage group. The attacks were not directly tied to the Coronavirus outbreak nor did the attackers attempt to leverage the virus in any way, but FireEye noted the group’s activity did…

CrowdStrike report: In a first, majority of attacks in 2019 were malware-free (video)

CrowdStrike on Tuesday released its annual Global Threat Report, and for the first time ever, the number of malware-free attacks that the company observed over the previous year exceeded actual malware-based attacks. The cybersecurity firm, which won Best Security Company at the 2020 SC Awards last week during the RSA Conference, reports that 51 percent…

Justice Dept. to reduce sentencing recommendation for Roger Stone

Just a day after prosecutors recommended Trump confidante Roger Stone get a seven-to-nine-year sentence for charges stemming from Robert Mueller’s Russian probe, the Justice Department reportedly has intervened reduce what it views as “extreme, excessive and grossly disproportionate” recommendation, a department official said. Stone, who prosecutors condemned for a “direct and brazen attack on the…

APT10

APT34 spread malware via LinkedIn invites

FireEye researchers identified a phishing campaign conducted by the cyberespionage group APT34 masquerading as a member of Cambridge University to gain their victim’s trust to open malicious documents.  Researchers noticed the campaign in late June 2019 using LinkedIn professional network invitations to deliver the malicious documents that included the use of three new malware families…

Huawei responds to allegations of NSA hacking

Huawei products riddled with backdoors, zero days and critical vulnerabilities

Huawei’s problems keep piling up as a security firm specializing in IoT devices found numerous vulnerabilities across the company’s entire product line. Finite State said it scanned more than 1.5 million files embedded within nearly 10,000 firmware images supporting 558 products looking for risks including hard-coded backdoor credentials, unsafe use of cryptographic keys, indicators of…

Huawei responds to leaks detailing NSA hack of firm's networks

Backdoors found in Huawei-supplied Vodafone equipment

Huawei Technologies is facing yet another controversy, this time after security documents from Europe’s Vodafone noted that the Chinese firm supplied the carrier with hardware laden with security issues. Vodafone said it found backdoors in the software contained in Huawei home routers and optical service nodes. Such backdoors could allow Huawei to gain access to…

Microsoft researchers find NSA-style backdoor in Huawei laptops

The Microsoft Defender Advanced Threat Protection (ATP) service featured in Windows 10 version 1809 alerted researchers to an NSA-inspired backdoor vulnerability in Huawei laptops. The PCManager software included in some Huawei’s Matebook systems allows unprivileged users to create processes with superuser privileges, according to a March 25 Microsoft security post. Upon investigation, researchers found a…

IoT devices attacked faster than ever, DDoS attacks up dramatically: Netscout

Cybercriminals upped their game in a big way in 2018, dramatically increasing the number and severity of DDoS attacks and refining their IoT attacks to entirely new levels. The main takeaway from Netscout’s Threat Report that looked at the second half of 2018 was that cybercriminals built and used cheaper, easier-to-deploy and more persistent malware…

Next post in Cybercrime