Pasco Corporation
February 6, 2020
•[ espionage, manufacturing ]
The Japanese defense contractor Pasco disclosed a security breach that happened in May 2018. Chinese threat actors Bronze Butler are believed to have been involved.
Hetman Petro Sahaidachnyi National Ground Forces Academy
February 5, 2020
•[ espionage, government ]
The Russia-aligned threat actor Gamaredon intensified its efforts to compromise Ukrainian defense and intelligence targets. The attacks include both cyberespionage and attempted sabotage of physical assets. Among the victims is the Hetman Petro Sahaidachnyi National Ground Forces Academy.
Ukrainian ISP
February 4, 2020
•[ espionage ]
Ukrainian police arrest a 16-year-old from the city of Odessa for attempting to extort a local ISP into sharing data on one of its subscribers.
kauno.diena.lt
January 30, 2020
•[ espionage, phishing, technology ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
Relative of Azadeh Shafiee
January 30, 2020
•[ espionage, social, phishing ]
The Iranian state-backed threat actor Charming Kitten impersonated prominent journalists and sent targets fake interview requests in order to steal their credentials and send them malware. One of the fake messages was from Azadeh Shafiee, an anchor for London-based broadcaster Iran International, that attempted to target one of her relatives.
Hassan Sarbakhshian
January 30, 2020
•[ espionage, malware, government ]
The Iranian state-backed threat actor Charming Kitten impersonated prominent journalists and sent targets fake interview requests in order to steal their credentials and send them malware. Among the victims is Hassan Sarbakhshian, an Iranian photojournalist who received a fake message from Farnaz Fassihi, an Iranian-American journalist.
Jeff Bezos
January 21, 2020
•[ espionage, malware, technology ]
An investigation reveals that Jeff Bezos' phone exfiltrated a massive amounts of personal information after receiving a WhatsApp-attached video file sent by the future king of Saudi Arabia, Prince Mohammed bin Salman on May 1, 2018.
American Electric Utilities
January 9, 2020
•[ espionage, energy ]
Researchers from Dragos reveal that a state-sponsored group affiliated to Iran called Magnallium has been probing American electric utilities for the past year.
Austrian Foreign Ministry
January 4, 2020
•[ espionage, government ]
Austria's foreign ministry is targeted by a cyber-attack that is suspected to have been conducted by a foreign country.
Office of Mark McGowan
January 3, 2020
•[ espionage, malware, government ]
Using a new exploit named Aria-body, APT 30 attempted to compromise networks belonging to governments and state-owned companies in Australia and Southeast Asia. One of the group's targets is the office of Mark McGowan, Western Australia's premier. The hackers compromised a computer at the Indonesian embassy in Canberra and sent a malicious document to a staff member at McGowan's office from that machine.
Bapco
December 29, 2019
•[ espionage, malware, energy ]
Multiple sources reveal that Iranian state-sponsored hackers have deployed Dustman, a new strain of data-wiping malware on the network of Bapco, Bahrain's national oil company. The attack occurred on December 29, 2019.
baltictimes
December 19, 2019
•[ espionage, hack, technology ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
Government organization in Cambodia
December 17, 2019
•[ espionage, malware, government ]
Researchers from Palo Alto reveal a new wave of attacks carried out by a Chinese APT dubbed Rancor, using a new malware strain dubbed Dudell.
Iran
December 11, 2019
•[ espionage, government ]
Iranian Telecoms Minister reveals to have foiled a major state-sponsored cyber attack on its infrastructure that was launched by a foreign government.
Hyundai
December 6, 2019
•[ espionage, manufacturing ]
German media report that hackers from APT32 AKA Ocean Lotus, suspected to have ties to the Vietnamese government, have breached the networks of two car manufacturers, namely BMW and Hyundai.
Dnipro Control System
November 29, 2019
•[ espionage, government ]
Researchers from Anomali reveal a new campaign carried out by the Russia-linked Gamaredon cyberespionage group, targeting Ukrainian targets, including diplomats, government and military officials. One of the targets is the Dnipro Control System, which is used by the Ukrainian Armed Forces.
Ministry of Foreign Affairs of Ukraine
November 29, 2019
•[ espionage, malware, government ]
Researchers from Anomali reveal a new campaign carried out by the Russia-linked Gamaredon cyberespionage group, targeting Ukrainian targets, including diplomats, government and military officials. One of the targets is the Ukrainian Ministry of Foreign Affairs.
Ukrainian Ministry of Foreign Affairs
November 25, 2019
•[ espionage, government ]
Gamaredon, a Russian-speaking APT, targeted Ukrainian government entities, including the Ministry of Foreign Affairs, from September to November 2019.
Belgium's trade mission to China
November 23, 2019
•[ espionage, government ]
Belgium's trade mission to China suffers a "massive cyber-attack." China State Security is indicated as the possible culprit.
Indian Space Research Organisation (ISRO)
November 7, 2019
•[ espionage, government ]
It is believed that North Korean hackers from the Lazarus group targeted the Indian Space Research Organisation during the Chandrayaan-2 moon mission in September.
