Prominent journalists in India including Siddharth Varadarajan, and Anand Mangnale
December 28, 2023
•[ espionage, malware, technology ]
Amnesty International reveals new details about the continued use of NSO Group's highly invasive spyware Pegasus to target prominent journalists in India, exploiting the CVE-2023-41064 vulnerability.
Albanian Parliament
December 22, 2023
•[ espionage, government ]
The Albanian parliament is targeted by a cyber attack, whose responsibility is claimed by an Iran-linked threat group known as Homeland Justice.
State-owned research company in Russia
December 19, 2023
•[ espionage, government ]
Researchers from F.A.C.C.T. discover a new campaign from the threat group known as Cloud Atlas, targeting a state-owned research company in a new espionage campaign.
Russian agro-industrial in Russia
December 19, 2023
•[ espionage, malware, manufacturing ]
Researchers from F.A.C.C.T. discover a new campaign from the threat group known as Cloud Atlas, targeting a Russian agro-industrial enterprise in a new espionage campaign.
Nepalese government officials
December 15, 2023
•[ espionage, malware, government ]
Researchers from Cyfirma discover a malicious campaign by the threat actor known as Sidewinder targeting Nepalese government officials via the Nim backdoor.
Government entities in Ukraine
December 15, 2023
•[ espionage, rce, government ]
Researchers from Deep Instinct reveal that an unknown threat actor targeted government entities in Ukraine toward the end of 2023 using an old Microsoft Office remote code execution (RCE) exploit from 2017 (CVE-2017-8570) as the initial vector and military vehicles as the lure.
Organizations in israel
December 14, 2023
•[ espionage, malware, government ]
Researchers from ESET discover a new campaign from the APT34 cyber-espionage group linked to the Iranian government against organizations in Israel and leveraging several new malware downloaders: ODAgent, OilCheck and OilBooster.
Organizations in Palestine
December 14, 2023
•[ espionage, malware ]
Researchers from SentinelOne discover a new campaign by the pro-Hamas threat actor known as Gaza Cybergang, targeting Palestinian entities using Pierogi++, an updated version of a backdoor dubbed Pierogi.
Telecommunications companies predominantly in Thailand
December 7, 2023
•[ espionage, malware, technology ]
Researchers from Group-IB discover a remote access trojan named Krasue, targeting Linux systems of telecommunications companies predominantly in Thailand, and managed to remain undetected since 2021.
Sellafield Nuclear Waste and Decommissioning Site
December 4, 2023
•[ hack, espionage, energy ]
Threat actors linked to Russia and China have allegedly hacked into the systems of the Sellafield nuclear waste and decommissioning site in the UK, according to an investigation conducted by The Guardian. However, the British government has dismissed the reports.
High-profile individuals working on Middle Eastern affairs at universities and research organizations in Belgium, France, Gaza, Israel, the United Kingdom, and the United States
November 30, 2023
•[ espionage, malware, phishing ]
Researchers from Microsoft discover a new campaign from the Iranian-backed Mint Sandstom state hackers, targeting high-profile employees of research organizations and universities across Europe and the United States in spearphishing attacks pushing a new backdoor malware known as MediaPl.
Telecommunications companies in Sudan
November 30, 2023
•[ espionage, malware, technology ]
Researchers from Broadcom/Symantec discover a campaign carried on by the cyber-espionage group Seedworm, linked to Iran's intelligence service, targeting telecommunications companies in Egypt, Sudan and Tanzania via the MuddyC2Go framework and a custom keylogger.
Myanmar's Ministry of Defence and Foreign Affairs
November 30, 2023
•[ espionage, malware, government ]
Researchers from CSIRT-CTI reveal the details of two campaigns from the China-based threat actor known as Mustang Panda, targeting Myanmar's Ministry of Defence and Foreign Affairs as part of twin campaigns designed to deploy backdoors and remote access trojans.
NXP
November 24, 2023
•[ espionage, manufacturing ]
Threat actors from the Chimera Chinese group broke into NXP, Europe's largest chip manufacturer, stealing chip designs and other intellectual property
Russian military-industrial enterprises
November 23, 2023
•[ espionage, government ]
Researchers from F.A.C.C.T. discover a new campaign by the cyberespionage group known as XDSpy, targeting Russian military-industrial enterprises.
Russia's Federal Air Transport Agency (Rosaviatsia)
November 23, 2023
•[ hack, espionage, government ]
Ukraine's intelligence service, operating under the Defense Ministry, claims they hacked Russia's Federal Air Transport Agency, 'Rosaviatsia,' to expose a purported collapse of Russia's aviation sector.
Government organization in Greece
November 15, 2023
•[ espionage, xss, government ]
Researchers from Google's Threat Analysis Group (TAG) discover a campaign targeting a government organization in Greece, exploiting the CVE-2023-37580 Zimbra email server vulnerability.
Embassies and international organizations
November 13, 2023
•[ espionage, malware, government ]
The Ukraine's National Cyber Security Coordination Center (NCSCC) reveals that Russian state-sponsored hackers from APT29 have targeted embassies and international organizations exploiting the WinRAR CVE-2023-38831 vulnerability.
Government and defense organizations in India
November 6, 2023
•[ espionage, malware, government ]
Researchers from Seqrite discover multiple campaigns of the Pakistan-based APT SideCopy, targeting Indian government and defense entities, exploiting the recent WinRAR vulnerability CVE-2023-38831 to deploy AllaKore RAT, DRat and additional payloads.
Undefined tech company
October 31, 2023
•[ espionage, malware, education ]
The Israel Computer Emergency Response Team (CERT) issues an alert about the BiBi wiper malware targeting organizations in Israel in the education and technology sectors. The attacks are attributed to the Iranian APT Agonizing Serpens.
