Ukrainian critical infrastructure organization
December 10, 2022
•[ espionage, energy ]
Researchers from Mandiant reveal that Russian state hackers have evolved their methods for breaching industrial control systems by adopting living-off-the-land techniques used for disruptive events in Ukraine.
Ukraine Ministry of Finance
November 29, 2022
•[ hack, espionage, government ]
Russian hackers from the XakNet collective claim to have breached the Ukraine Ministry of Finance, gaining access to more than one million documents.
LNG terminals in the Netherlands
November 25, 2022
•[ espionage, energy ]
Researchers from Dragos report that Russian hackers from Xenotime and Kamacite have been doing "exploratory research" into the systems of the Dutch LNG (Liquid Natural Gas) terminals.
Undisclosed major Israeli security organization
November 23, 2022
•[ espionage, government ]
An Iranian hacker group by the name of Moses Staff publishes footage of the bombing attack in Jerusalem on its Telegram group, claiming to have hacked the surveillance cameras belonging to a major Israeli security organization. However Israeli authorities deny the hack.
Undisclosed organization in the United States
November 15, 2022
•[ espionage, malware ]
Researchers from Kaspersky reveal the details of the latest campaign from the North Korean group Lazarus targeting multiple organizations in Europe and America via the DTrack modular backdoor.
Indian defense personnel
November 7, 2022
•[ espionage, malware, government ]
Researchers at Cyfirma discover a new malicious Android installation package, a variant of the Spymax RAT, targeting Indian defense personnel since at least July 2021.
Unidentified organization
October 31, 2022
•[ espionage, government ]
Researchers from Trend Micro discover a new campaign, conducted between March and October 2022, targeting government, academic, foundations, and research sectors of multiple countries including Myanmar, Australia, the Philippines, Japan, and Taiwan.
Amnesty International Canada
October 6, 2022
•[ espionage, government ]
Amnesty International's Canadian branch has disclosed a security breach detected in early October and linked by cybersecurity firm Secureworks, who investigated the incident, to a threat group likely sponsored by China.
Unnamed defense company
October 4, 2022
•[ espionage, malware, government ]
The Cybersecurity and Infrastructure Security Agency (CISA), FBI and National Security Agency (NSA), say it is likely that multiple government hacking groups had "long-term" access to the network of a defense company, exploiting Microsoft Exchange vulnerabilities to gain access remotely and compromise legitimate company accounts to access emails, meetings, and contacts belonging to other employees, via a custom data exfiltration tool, CovalentStealer.
Mexican journalists and a human rights defender
October 2, 2022
•[ espionage, malware, government ]
An investigation reveals that Mexican journalists and a human rights defender investigating links between extrajudicial killings, drugs cartels, and the Mexican military, were infected with NSO Group's Pegasus spyware.
Ukrainian foreign intelligence service
September 26, 2022
•[ espionage, hack, government ]
The Russian hacker group RaHDIt posts the data of 1,500 employees of the Ukrainian foreign intelligence service.
Northwestern Polytechnical University
September 11, 2022
•[ espionage, education ]
China denounces the U.S. Embassy in Beijing following a joint report from two of the country's most prominent cyber authorities (China's National Computer Virus Emergency Response Center (CVERC) and the company 360) accusing the National Security Agency of stealing "sensitive information" from Chinese institutions, in particular the Northwestern Polytechnical University.
British Hospitals
August 9, 2022
•[ espionage, ddos, healthcare ]
The Russian-affiliated collective Phoenix claims to have conducted a DDoS campaign against British hospitals and foundations assisting Ukraine.
Nikos Androulakis
July 26, 2022
•[ espionage, malware, government ]
A security audit by the European Parliament reveals attempts to plant the Cytrox surveillance software on the phone of Nikos Androulakis, a Greek lawmaker.
NATO Country in Europe
July 19, 2022
•[ espionage, government ]
Researchers from Palo Alto reveal the details of a new cyber espionage campaign carried out by the Russian threat actor APT29 targeting a Nato country in Europe.
Belgium defense and interior ministries
July 18, 2022
•[ espionage, malware, government ]
The Minister for Foreign Affairs of Belgium says multiple Chinese state-backed threat groups, including APT27, targeted the country's defense and interior ministries.
Belgium defense and interior ministries
July 18, 2022
•[ espionage, government ]
The Minister for Foreign Affairs of Belgium says multiple Chinese state-backed threat groups, including APT30, targeted the country's defense and interior ministries.
Belgium defense and interior ministries
July 18, 2022
•[ espionage, government ]
The Minister for Foreign Affairs of Belgium says multiple Chinese state-backed threat groups, including Gallium, targeted the country's defense and interior ministries.
Political Activists
July 18, 2022
•[ espionage, malware, government ]
At least 30 political activists in Thailand have been hacked using Israeli surveillance spyware Pegasus by NSO Group, according to a joint investigation by human rights and cyber monitoring groups.
Belgium defense and interior ministries
July 18, 2022
•[ espionage, malware, government ]
The Minister for Foreign Affairs of Belgium says multiple Chinese state-backed threat groups, including APT31, targeted the country's defense and interior ministries.
