Foreign ministries of NATO-aligned governments
August 10, 2023
•[ espionage, malware, government ]
Researchers from EclecticIQ discover a recent campaign targeting the foreign ministries of NATO-aligned governments with two malicious PDF files camouflaged as diplomatic invitations from a German embassy.
Foreign embassies in Belarus
August 9, 2023
•[ espionage, government ]
Researchers from ESET discover a cyberespionage group named 'MoustachedBouncer', observed using adversary-in-the-middle (AitM) attacks at ISPs to hack foreign embassies in Belarus.
Ukraine Military
August 8, 2023
•[ espionage, hack, government ]
Ukrainian security services say they prevented an attempt by Russian state-controlled hackers from the Sandworm group to break into the battlefield management system used by the Ukrainian military.
Classified military networks
August 7, 2023
•[ espionage, government ]
Classified military networks run by Japan reportedly suffered a massive breach in 2020 at the hands of a Chinese cyberespionage group. Attackers accessed Ministry of Defense plans as well as information about military capabilities and shortcomings.
NPO Mashinostroyeniya
August 7, 2023
•[ espionage, malware, manufacturing ]
Researchers from Sentinel One reveal that the North Korean threat group ScarCruft hacked the IT infrastructure and email server for NPO Mashinostroyeniya, a Russian space rocket designer and intercontinental ballistic missile engineering organization using a Windows backdoor named 'OpenCarrot'.
Offtec
July 31, 2023
•[ espionage, malware, technology ]
Researchers from Deep Instinct discover a new campaign from the "MuddyWater" group targeting Offtec, a Jordanian conglomerate using MuddyC2Go, a new C2 Framework.
Targets including members of the U.S. Congress and European officials.
June 30, 2023
•[ espionage, malware, government ]
Amnesty International discover a campaign allegedly carried out by the Vietnamese government with the Predator spyware against targets including members of the U.S. Congress and European officials.
JumpCloud
June 27, 2023
•[ espionage, technology ]
JumpCloud, a US-based enterprise software firm notifies several customers of an "ongoing incident" and as a caution, the company invalidates existing admin API keys to protect its customer organizations. Few days later, the breach is traced back to North Korean state-sponsored actors from Lazarus Group.
Unknown cryptocurrency exchange located in Japan
June 21, 2023
•[ espionage, malware, finance ]
Researchers from Elastic reveal that an unknown cryptocurrency exchange located in Japan was the target of an attack to deploy the Apple macOS backdoor called JokerSpy.
Service members of the U.S. Military
June 15, 2023
•[ espionage, malware, government ]
Service members across the military report receiving smartwatches unsolicited in the mail. The smartwatches, when used, auto-connect to Wi-Fi and begin connecting to cell phones unprompted, gaining access to a myriad of user data, and could also connect malware.
Non-profit organization(s) in Saudi Arabia
May 31, 2023
•[ espionage, malware, healthcare ]
Researchers from Cisco Talos disclose a stealthy cyberespionage campaign that targeted a non-profit organization in Saudi Arabia with a backdoor named Zardoor, and remained undetected for two years.
Eurasia Group
May 3, 2023
•[ espionage, phishing, government ]
Eurasia Group discovers suspicious activity within its email system by a sophisticated threat actor in two different circumstances.
3CX
April 20, 2023
•[ espionage, malware, technology ]
Researchers from Mandiant reveal that the 3CX supply chain attack was caused by another supply chain compromise where suspected North Korean attackers breached the site of stock trading automation company Trading Technologies to push trojanized software builds.
Cisco
April 18, 2023
•[ espionage, malware, technology ]
The UK National Cyber Security Centre (NCSC), US Cybersecurity and Infrastructure Security Agency (CISA), NSA, FBI, and Cisco warn of Russian state-sponsored APT28 hackers deploying a custom malware named 'Jaguar Tooth' on Cisco IOS routers, exploiting CVE-2017-6742, allowing unauthenticated access to the device.
Undisclosed government agency in Ukraine.
April 18, 2023
•[ espionage, government ]
The Ukraine's computer emergency response team, CERT-UA, identifies a cyber-espionage campaign carried on by an unidentified threat actor named UAC-0063, targeting an undisclosed government agency in Ukraine.
Ukraine Coffee Shops
April 11, 2023
•[ espionage, misconfiguration, retail ]
The National Security Agency reveals that Russian threat actors have logged into private security cameras in Ukraine coffee shops to collect intelligence on aid convoys.
India's Defense Research and Development Organization (DRDO)
March 21, 2023
•[ espionage, malware, government ]
Security researchers from Cyble discover a new campaign by the Pakistani cyberespionage group SideCopy APT employing fresh tactics to target workers at India's Defense Research and Development Organization and steal sensitive military secrets.
Diplomatic entities and government agencies in Eastern Europe
March 14, 2023
•[ espionage, phishing, government ]
Researchers from BlackBerry reveal that the Russian state-backed group known as Nobelium is behind recent attempted cyberattacks on diplomatic entities and government agencies in the European Union via phishing emails with a malicious document attached, using the Polish Foreign Minister's recent visit to the US as a lure.
VisitFaroeIslands
March 4, 2023
•[ hack, espionage, technology ]
The SeigedSec hacking group claims to have defaced the tourist website for the Faroe Islands '" a self-governing territory of the Kingdom of Denmark '" and to have stolen employee data and other sensitive information.
Association of Southeast Asian Nations (ASEAN)
February 28, 2023
•[ espionage, government ]
Chinese state-sponsored threat actors managed to breach the mail servers operated by the Association of Southeast Asian Nations, stealing a trove of data that may have contained strategic information about the economy and politics of member countries.
