KCG Holdings
April 23, 2017
•[ insider, espionage, malware ]
The FBI arrests Zhengquan Zhang, a 31-year-old IT engineer, accused of installing malware on his employer's servers to steal proprietary source.
National Foreign Trade Council (NFTC)
April 6, 2017
•[ espionage, government ]
Fidelis Cybersecurity reveals that ahead of the trade summit between US President Donald Trump and his Chinese counterpart, Xi Jinping, a nation-state hacking group conducted espionage on a number of key industry players and lobbyists with links to the talks.
Anonymous
April 5, 2017
•[ espionage, technology ]
Anonymous members who want to participate in this year's annual #OpIsrael cyber-attacks are the targets of an intelligence gathering operation carried out by an unknown threat actor.
Defense Integrated Data Center
April 5, 2017
•[ hack, espionage, government ]
North Korean hackers have reportedly accessed OPlan 5027, the secretive war-plans drawn up by South Korea and the United States, detailing how the allied military forces would respond to the outbreak of war in the region " including first strike targets and troop deployments.
Bill Marczak
March 29, 2017
•[ espionage, malware, technology ]
A threat actor targeted Ethiopian dissidents for the purpose of espionage, using commercially available spyware sold by Cyberbit, an Israel-based company. Most notably, the actor targeted the Oromia Media Network and some individuals associated with it.
Yahoo!
February 15, 2017
•[ espionage, misconfiguration, technology ]
Yahoo sends out another round of notifications to users, warning some that their accounts may have been breached as recently as last year. The accounts were affected by a flaw in Yahoo's mail service that allowed an attacker, most likely a "state actor", according to Yahoo, to use a forged cookie created by software stolen from within Yahoo's internal systems to gain access accounts without a password.
International Trade Union Confederation
February 14, 2017
•[ espionage, phishing, government ]
Amnesty International reveals the details of Operation Kingphish: a campaign of cyberattacks mainly targeting activists and journalists in Qatar and Nepal. One of the named victims is the International Trade Union Confederation.
Unnamed TV station in the UK
January 26, 2017
•[ espionage, malware ]
SecureWorks reveals that APT28 was able to infiltrate an unnamed TV station in the UK and stay undetected for 12 months starting from July 2015.
Mario Monti
January 11, 2017
•[ espionage, malware, finance ]
Italian siblings Giulio and Francesca Maria Occhionero are arrested in Rome, charged with conducting a long-running cyber espionage campaign against leading Italian politicians, businessmen and Masons using a variant of the malware family EyePyramid. Among the victims are the grand master of Italy's biggest lodge, the president of the European Central Bank, Mario Draghi, and former Italian prime ministers, Matteo Renzi and Mario Monti.
Democratic National Committee
December 29, 2016
•[ hack, espionage, government ]
The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) reval the details of "Grizzly Steppe", the operation through which two alleged Russian APTs (APT28 and APT29) hacked the Democratic National Committee since Summer 2015.
Ukrainian Artillery Units
December 23, 2016
•[ espionage, malware, government ]
Fancy Bear, the hacker group previously linked to the Russian Military Intelligence (GRU), is believed to have deployed malware on Android devices to track and target Ukrainian artillery units over the past two years.
Bellingcat
September 29, 2016
•[ espionage, technology ]
ThreatConnect reveals that investigative journalism group Bellingcat, that helped to investigate the downing of flight MH17 over eastern Ukraine in 2014 have been targeted in a series of sophisticated attacks by pro-Russia group Fancy Bear.
World Anti-Doping Agency
September 14, 2016
•[ hack, espionage ]
The World Anti-Doping Agency (WADA) confirms that a suspected Russian hacking group illegally accessed its "administration and management system" - known as "Adams" and stole troves of sensitive data on athletes. Among those targeted are Serena and Venus Williams.
2 Hong Kong government agencies
September 1, 2016
•[ espionage, government ]
Security company FireEye reveals that two Hong Kong government agencies have come under attack from cyberspies originating in China in the month leading up to Sunday's legislative elections.
Department of Justice of the Philippines
August 4, 2016
•[ espionage, malware, government ]
F-Secure reveals the details of NanHaiShu, a spy campaign aimed at accessing information from high-profile targets involved in the South China Sea dispute. One of the main victims is the Philippine Department of Justice.
Irina Petrushova
August 2, 2016
•[ espionage, government ]
Threat actors believed to be tied to the Kazakh government have targeted lawyers and exiled Kazakh dissidents for the purpose of espionage. One of the victimis is Irina Petrushova, a publisher of an independent Kazakh newspaper.
Peter Sahlas
August 2, 2016
•[ espionage ]
Threat actors believed to be tied to the Kazakh government have targeted lawyers and exiled Kazakh dissidents for the purpose of espionage. One of the victimis is Peter Sahlas, a human rights attorney.
Alexander Petrushov
August 2, 2016
•[ espionage, government ]
Threat actors believed to be tied to the Kazakh government have targeted lawyers and exiled Kazakh dissidents for the purpose of espionage. One of the victimis is Alexander Petrushov, a publisher of an independent Kazakh newspaper.
Astolfo di Amato
August 2, 2016
•[ espionage, government ]
Threat actors believed to be tied to the Kazakh government have targeted lawyers and exiled Kazakh dissidents for the purpose of espionage. One of the victimis is Astolfo di Amato, an Italian attorney who spearheaded anti-corruption litigation against Kazakhstan.
Iranian Telegram users
August 2, 2016
•[ espionage, hack, leak ]
Iranian hackers linked to the state sponsored group called Rocket Kitten have compromised more than a dozen accounts on the Telegram instant messaging service and identified the phone numbers of 15 million Iranian users.
