Middle East Airlines
November 14, 2018
•[ espionage, misconfiguration, government ]
An unknown actor with a connection to Iran hijacked DNS records to target the traffic of governments and telecommunications organizations around the world. One of the victims is Middle East Airlines, a Lebanese airline.
UK Engineering Company
November 13, 2018
•[ espionage, phishing, manufacturing ]
Researchers from Recorded Future reveal the details of a spear phishing campaign carried out by the Chinese TEMP.Periscope group against a UK based engineering company, leveraging Russian APT Techniques.
kasvyksta.lt
October 26, 2018
•[ espionage, hack, government ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
A primary company in the Italian naval industry
October 17, 2018
•[ espionage, malware, manufacturing ]
Researchers from Yoroi discover a new targeted campaign against one of the most important companies in the Italian naval industry. The malware is dubbed MartyMcFly.
Organization for the Prohibition of Chemical Weapons
October 4, 2018
•[ espionage, misconfiguration, government ]
A threat actor, believed to be Russian military intelligence, targeted the office of the Organization for the Prohibition of Chemical Weapons in The Hague with a view of compromising its Wi-Fi network for espionage purposes.
TelAlaska
August 16, 2018
•[ espionage, technology ]
A threat actor is targeting multiple organizations with trade ties to China, including those connected with China's Belt and Road Initiative. The actor also targets organizations in advance of officials' meetings with Chinese trade officials.
Ghanem al-Masarir
August 1, 2018
•[ espionage, malware, government ]
A threat actor targeted Ghanem al-Masarir, a Saudi dissident, for espionage purposes. The threat actor used the Pegasus tool, created by the NSO Group.
Amnesty International
August 1, 2018
•[ espionage, malware, government ]
Amnesty International reveals to have been targeted by a campaign carried out via the surveillance malware developed by the Israel surveillance vendor, NSO Group.
Yahya Assiri
August 1, 2018
•[ espionage, malware, government ]
A threat actor targeted Yahya Assiri, a critic of the Kingdom of Saudi Arabia, for espionage purposes. The threat actor used the Pegasus tool, created by the NSO Group.
Spiez Laboratory
July 30, 2018
•[ espionage, government ]
The state-run Spiez laboratory near Bern, which analyzed the nerve agent samples from Salisbury, reveals to have been targeted by hackers believed to be linked to the Russian government ahead of a conference of chemical and biological warfare.
Government agency in the Middle East
July 27, 2018
•[ espionage, malware, government ]
Researchers from Palo Alto Networks Unit 42 unveils a targeted attack against a government agency in the Middle East carried out by a threat actor dubbed DarkHydrus.
Italian Military
July 15, 2018
•[ espionage, government ]
Security researchers from the Z-Lab at CSE Cybersec reveal the details of Operation "Roman Holiday" an operation carried on by APT28 (AKA Fancy Bear) and targeting the Italian Military.
Cambodian Ministry of Foreign Affairs and International Cooperation
July 10, 2018
•[ espionage, hack, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the Cambodian Ministry of Foreign Affairs and International Cooperation.
Cambodian National Election Committee
July 10, 2018
•[ espionage, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the Cambodian National Election Committee.
Cambodian People's Party
July 10, 2018
•[ espionage, hack, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the ruling Cambodian People's Party.
Cambodia National Rescue Party
July 10, 2018
•[ espionage, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the opposition Cambodia National Rescue Party.
Cambodian Senate
July 10, 2018
•[ espionage, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the Cambodian Senate.
U.S. Air Force
July 10, 2018
•[ espionage, misconfiguration, government ]
Security Firm Recorded Future identifies an attempted sale of what is believed to be highly sensitive U.S. Air Force documents pertaining to the MQ-9 Reaper drone. The attack was carried on via the default FTP authentication credentials in Netgear routers.
Cambodia
July 10, 2018
•[ espionage, government ]
Researchers from FireEye reveal a large scale operation from TEMP.Periscope, a Chinese cyber espionage group seeking to monitor the country's upcoming and contentious July 29 national elections.
Cambodian Ministry of Economics and Finance
July 10, 2018
•[ espionage, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the Cambodian Ministry of Economics and Finance.
