Undisclosed government agency in Ukraine.
April 18, 2023
•[ espionage, government ]
The Ukraine's computer emergency response team, CERT-UA, identifies a cyber-espionage campaign carried on by an unidentified threat actor named UAC-0063, targeting an undisclosed government agency in Ukraine.
Ukraine Coffee Shops
April 11, 2023
•[ espionage, misconfiguration, retail ]
The National Security Agency reveals that Russian threat actors have logged into private security cameras in Ukraine coffee shops to collect intelligence on aid convoys.
India's Defense Research and Development Organization (DRDO)
March 21, 2023
•[ espionage, malware, government ]
Security researchers from Cyble discover a new campaign by the Pakistani cyberespionage group SideCopy APT employing fresh tactics to target workers at India's Defense Research and Development Organization and steal sensitive military secrets.
Diplomatic entities and government agencies in Eastern Europe
March 14, 2023
•[ espionage, phishing, government ]
Researchers from BlackBerry reveal that the Russian state-backed group known as Nobelium is behind recent attempted cyberattacks on diplomatic entities and government agencies in the European Union via phishing emails with a malicious document attached, using the Polish Foreign Minister's recent visit to the US as a lure.
VisitFaroeIslands
March 4, 2023
•[ hack, espionage, technology ]
The SeigedSec hacking group claims to have defaced the tourist website for the Faroe Islands '" a self-governing territory of the Kingdom of Denmark '" and to have stolen employee data and other sensitive information.
Association of Southeast Asian Nations (ASEAN)
February 28, 2023
•[ espionage, government ]
Chinese state-sponsored threat actors managed to breach the mail servers operated by the Association of Southeast Asian Nations, stealing a trove of data that may have contained strategic information about the economy and politics of member countries.
Ukranian Government
February 23, 2023
•[ espionage, malware, government ]
The Computer Emergency Response Team of Ukraine (CERT-UA) reveals that Russian state-sponsored threat actors have breached multiple government websites this week using backdoors planted as far back as December 2021.
Ukrainian government agencies
February 6, 2023
•[ espionage, phishing, government ]
The Ukraine's computer emergency response team (CERT-UA) reveals that in a recent phishing campaign against Ukrainian government agencies, attackers attempted to install the Remcos surveillance software on victims' computers.
Korean Archaeological Society
January 31, 2023
•[ espionage, education ]
Researchers from Recorded Future discover a new wave of attacks of the Chinese threat actor known as Xiaoqiying, targeting organizations in South Korea.
Brookhaven Nuclear Laboratory (BNL)
January 6, 2023
•[ espionage, phishing, energy ]
The Russian group Cold River targeted the Brookhaven Nuclear Laboratory with a spear phishing campaign creating fake login pages.
Ukrainian Government Entities
December 12, 2022
•[ espionage, phishing, government ]
Ukrainian government agencies and the state railway are the latest victims of a new wave of phishing attacks, Ukraine's Computer Emergency Response Team (CERT-UA) reported last week.
Ukrainian critical infrastructure organization
December 10, 2022
•[ espionage, energy ]
Researchers from Mandiant reveal that Russian state hackers have evolved their methods for breaching industrial control systems by adopting living-off-the-land techniques used for disruptive events in Ukraine.
Ukraine Ministry of Finance
November 29, 2022
•[ hack, espionage, government ]
Russian hackers from the XakNet collective claim to have breached the Ukraine Ministry of Finance, gaining access to more than one million documents.
LNG terminals in the Netherlands
November 25, 2022
•[ espionage, energy ]
Researchers from Dragos report that Russian hackers from Xenotime and Kamacite have been doing "exploratory research" into the systems of the Dutch LNG (Liquid Natural Gas) terminals.
Undisclosed major Israeli security organization
November 23, 2022
•[ espionage, government ]
An Iranian hacker group by the name of Moses Staff publishes footage of the bombing attack in Jerusalem on its Telegram group, claiming to have hacked the surveillance cameras belonging to a major Israeli security organization. However Israeli authorities deny the hack.
Undisclosed organization in the United States
November 15, 2022
•[ espionage, malware ]
Researchers from Kaspersky reveal the details of the latest campaign from the North Korean group Lazarus targeting multiple organizations in Europe and America via the DTrack modular backdoor.
Indian defense personnel
November 7, 2022
•[ espionage, malware, government ]
Researchers at Cyfirma discover a new malicious Android installation package, a variant of the Spymax RAT, targeting Indian defense personnel since at least July 2021.
Unidentified organization
October 31, 2022
•[ espionage, government ]
Researchers from Trend Micro discover a new campaign, conducted between March and October 2022, targeting government, academic, foundations, and research sectors of multiple countries including Myanmar, Australia, the Philippines, Japan, and Taiwan.
Amnesty International Canada
October 6, 2022
•[ espionage, government ]
Amnesty International's Canadian branch has disclosed a security breach detected in early October and linked by cybersecurity firm Secureworks, who investigated the incident, to a threat group likely sponsored by China.
Unnamed defense company
October 4, 2022
•[ espionage, malware, government ]
The Cybersecurity and Infrastructure Security Agency (CISA), FBI and National Security Agency (NSA), say it is likely that multiple government hacking groups had "long-term" access to the network of a defense company, exploiting Microsoft Exchange vulnerabilities to gain access remotely and compromise legitimate company accounts to access emails, meetings, and contacts belonging to other employees, via a custom data exfiltration tool, CovalentStealer.
