Cyberespionage | SC Media

Cyberespionage

Report: Dutch agency recruited Iranian mole to help U.S. and Israel plant Stuxnet virus

The 2007 Stuxnet virus attack perpetrated against Iran’s then-budding nuclear program was made possible after U.S. and Israeli intelligence coordinated with Dutch intelligence agency AIVD to recruit an Iranian engineer as a mole who could infect Iran’s enrichment plant near Natanz, Yahoo News reported this week. The engineer initially provided data that helped Stuxnet’s authors…

Reports say China devised iPhone malware campaign to track Muslims; Android and Windows devices also targeted

A recently exposed malware campaign that used watering-hole attacks to target iPhone users for more than two years was reportedly part of an effort to track Uyghur Muslims based in China’s Xinjiang state. The campaign was actually broader than originally thought, and attempted to infect Android and Microsoft Windows devices as well, reports are also…

APT-hunting group claims China’s Security Ministry is behind APT17

Researchers at Intrusion Truth are claiming the cyberespionage group APT17 is operated by the Jinan bureau of the Chinese Ministry of State Security (MSS). Intrusion Truth is an online anonymous group of cybersecurity analysts who investigate and expose APT groups linked to the Chinese government.    APT17 is believed to have been behind a series of…

APT10

APT34 spread malware via LinkedIn invites

FireEye researchers identified a phishing campaign conducted by the cyberespionage group APT34 masquerading as a member of Cambridge University to gain their victim’s trust to open malicious documents.  Researchers noticed the campaign in late June 2019 using LinkedIn professional network invitations to deliver the malicious documents that included the use of three new malware families…

Russian-based misinformation campaign sends fake news from spoofed accounts

A Russian-based information operations campaign used fake social media accounts across multiple platforms to attack western interests.  Researchers from the Center for Strategic & International Studies detailed a report on a  Russian-based misinformation operations campaign that used fake social media accounts across multiple platforms, at times impersonating real individuals who were politically active in their home…

Report: Iran claims to have thwarted a U.S. cyberespionage operation

Iran is reportedly claiming that it successfully uprooted a CIA-led cyberespionage operation and arrested several U.S. spies in the process. “One of the most complicated CIA cyberespionage networks that had an important role in the CIA’s operations in different countries was exposed by the Iranian intelligence agencies a while ago and was dismantled,” said Ali…

Russia accused of hacking EU embassy in Moscow

Russia is believed to have hacked the Europian Union’s embassy in Moscow in a sophisticated cyberespionage attack designed to steal highly sensitive material from the mission’s internal network just weeks before the European Parliament elections. The initial attack took place in February 2017, but wasn’t detected until April of this year. European officials aren’t yet…

Huawei given 90-day reprieve from Entity List

The U.S. Commerce Department has temporarily relieved Chinese manufacturer Huawei of its inclusion on the federal Entity List, allowing the company to continue to do operate with its business partners for 90 days. Huawei was added to the Entity List on May 16, effectively banning the company from doing business in the United States, but…

TeamViewer reportedly hit by Chinese hackers in 2016

TeamViewer announced it was the victim of a cyber attack which took place in 2016 although some sources claim that hackers were in the firm’s network as early as 2014. The data breach was reportedly the result of threat actors exploiting the recently patched Winnti backdoor trojan, a malware first seen used by a group…

Next post in Cybercrime