podlasie24
April 22, 2020
•[ espionage, phishing, technology ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
Chinese Ministry of Emergency Management
April 22, 2020
•[ espionage, phishing, government ]
Vietnamese hackers have sent spear-phishing messages to the China's Ministry of Emergency Management as part of a campaign to gather information about China's COVID-19 response.
Companies conducting research into treatments for COVID-19
April 16, 2020
•[ espionage, healthcare ]
The FBI reveals that foreign government hackers have broken into companies conducting research into treatments for COVID-19.
World Health Organization (WHO)
April 2, 2020
•[ espionage, phishing, government ]
Hackers working in the interests of the Iranian government have sent phishing emails masquerading as Google web services to WHO employees, attempting to gain access to internal information.
InformInvestGroup CJSC
March 20, 2020
•[ hack, espionage, government ]
Russian hacker group Digital Revolution claims to have breached InformInvestGroup CJSC, a contractor for the FSB, Russia's national intelligence service, and discovered details about Fronton, a project intended for hacking Internet of Things (IoT) devices.
Kobe Steel (Kobelco)
February 6, 2020
•[ espionage, manufacturing ]
The Japanese defense contractor Kobe Steel disclosed a security breach that happened in June 2015 and August 2016. Chinese threat actors Bronze Butler are believed to have been involved.
Pasco Corporation
February 6, 2020
•[ espionage, manufacturing ]
The Japanese defense contractor Pasco disclosed a security breach that happened in May 2018. Chinese threat actors Bronze Butler are believed to have been involved.
Hetman Petro Sahaidachnyi National Ground Forces Academy
February 5, 2020
•[ espionage, government ]
The Russia-aligned threat actor Gamaredon intensified its efforts to compromise Ukrainian defense and intelligence targets. The attacks include both cyberespionage and attempted sabotage of physical assets. Among the victims is the Hetman Petro Sahaidachnyi National Ground Forces Academy.
Ukrainian ISP
February 4, 2020
•[ espionage ]
Ukrainian police arrest a 16-year-old from the city of Odessa for attempting to extort a local ISP into sharing data on one of its subscribers.
kauno.diena.lt
January 30, 2020
•[ espionage, phishing, technology ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
Relative of Azadeh Shafiee
January 30, 2020
•[ espionage, social, phishing ]
The Iranian state-backed threat actor Charming Kitten impersonated prominent journalists and sent targets fake interview requests in order to steal their credentials and send them malware. One of the fake messages was from Azadeh Shafiee, an anchor for London-based broadcaster Iran International, that attempted to target one of her relatives.
Hassan Sarbakhshian
January 30, 2020
•[ espionage, malware, government ]
The Iranian state-backed threat actor Charming Kitten impersonated prominent journalists and sent targets fake interview requests in order to steal their credentials and send them malware. Among the victims is Hassan Sarbakhshian, an Iranian photojournalist who received a fake message from Farnaz Fassihi, an Iranian-American journalist.
Jeff Bezos
January 21, 2020
•[ espionage, malware, technology ]
An investigation reveals that Jeff Bezos' phone exfiltrated a massive amounts of personal information after receiving a WhatsApp-attached video file sent by the future king of Saudi Arabia, Prince Mohammed bin Salman on May 1, 2018.
American Electric Utilities
January 9, 2020
•[ espionage, energy ]
Researchers from Dragos reveal that a state-sponsored group affiliated to Iran called Magnallium has been probing American electric utilities for the past year.
Austrian Foreign Ministry
January 4, 2020
•[ espionage, government ]
Austria's foreign ministry is targeted by a cyber-attack that is suspected to have been conducted by a foreign country.
Office of Mark McGowan
January 3, 2020
•[ espionage, malware, government ]
Using a new exploit named Aria-body, APT 30 attempted to compromise networks belonging to governments and state-owned companies in Australia and Southeast Asia. One of the group's targets is the office of Mark McGowan, Western Australia's premier. The hackers compromised a computer at the Indonesian embassy in Canberra and sent a malicious document to a staff member at McGowan's office from that machine.
Bapco
December 29, 2019
•[ espionage, malware, energy ]
Multiple sources reveal that Iranian state-sponsored hackers have deployed Dustman, a new strain of data-wiping malware on the network of Bapco, Bahrain's national oil company. The attack occurred on December 29, 2019.
baltictimes
December 19, 2019
•[ espionage, hack, technology ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
Government organization in Cambodia
December 17, 2019
•[ espionage, malware, government ]
Researchers from Palo Alto reveal a new wave of attacks carried out by a Chinese APT dubbed Rancor, using a new malware strain dubbed Dudell.
Iran
December 11, 2019
•[ espionage, government ]
Iranian Telecoms Minister reveals to have foiled a major state-sponsored cyber attack on its infrastructure that was launched by a foreign government.
