Cybercrime, Fraud Management & Cybercrime, Governance & Risk Management Kaspersky Reports Updated EagerBee Malware Campaign Targeting Organizations in the Middle East Akshaya Asokan (asokan_akshaya) • January 7, 2025 Image: Shutterstock Security researchers have issued a warning regarding a renewed malware campaign utilizing an upgraded variant of EagerBee, which is specifically…
In 2024, significant events in the realm of cybersecurity have underscored the growing threats businesses face in the digital age. A series of notable cyberattacks, data breaches, the emergence of new threat groups, and the exploitation of zero-day vulnerabilities have attracted attention from cybersecurity professionals and business owners alike. One…
1.) Escalating Cyber Threats: Lazarus Group Targets Nuclear Power Sector with Advanced Malware The Lazarus Group, an elite hacking organization believed to receive backing from the North Korean government, has ramped up its cyber offensive by zeroing in on nuclear power organizations and critical infrastructure sectors. These targeted attacks employ…
Kaspersky Highlights Surge in Crypto-Drainer Malware and Dark Web Data Breaches In a recent report, cybersecurity firm Kaspersky has raised alarms about an increase in crypto-drainer malware incidents and the proliferation of data breach advertisements on the dark web. This development underscores a growing threat to businesses that rely on…
Russian Cybercriminal Campaign Targets Retailers with Advanced Malware Tactics A recent malware campaign has been launched against retailers and service providers in Russia, marking a significant upsurge in cybercriminal activity since March 2023. According to cybersecurity firm Kaspersky, this operation aims to infiltrate targeted organizations through sophisticated remote access tools…
Understanding Stalkerware: A Growing Threat to Mobile Security In recent months, a concerning trend has emerged in the cybersecurity landscape: the rise of stalkerware, a form of malicious software that allows unauthorized individuals to secretly monitor and track another person’s device. This technology has become a significant concern for mobile…
A concerning trend has emerged in the cybersecurity landscape, as identified by Kaspersky, the prominent cybersecurity firm with origins in Russia. Cybercriminal organizations are increasingly collaborating to optimize their gains by executing consecutive malware attacks. The strategy typically involves initial infiltration using information-stealing malware, followed subsequently by a ransomware attack,…
APT31 Linked to Cyberattacks on Air-Gapped Systems in Eastern Europe
August 01, 2023
Cyber Attack / Data Security
A Chinese-affiliated nation-state actor is under suspicion for a series of cyberattacks targeting industrial organizations in Eastern Europe last year, aimed at extracting information from air-gapped systems. Cybersecurity firm Kaspersky has attributed these intrusions with medium to high confidence to the hacking group known as APT31, which is also recognized by the aliases Bronze Vinewood, Judgement Panda, and Violet Typhoon (previously Zirconium). This conclusion is based on shared tactics observed in the attacks. The intrusions involved over 15 different implants and their variants, categorized into three primary functions: establishing persistent remote access, collecting sensitive data, and transmitting the stolen information to infrastructure controlled by the attackers. Notably, one type of implant appeared to be an advanced modular malware, designed to profile removable drives and infect them with a worm to extract data from isolated air-gapped networks.
China’s APT31 Linked to Data Breaches in Eastern Europe’s Industrial Sector In a developing cybersecurity crisis, it has been reported that a state-sponsored hacking group with ties to China has been implicated in a series of targeted attacks on industrial organizations in Eastern Europe. These attacks, which occurred over the…
APT31 Linked to Cyberattacks on Air-Gapped Systems in Eastern Europe
August 01, 2023
Cyber Attack / Data Security
A Chinese-affiliated nation-state actor is under suspicion for a series of cyberattacks targeting industrial organizations in Eastern Europe last year, aimed at extracting information from air-gapped systems. Cybersecurity firm Kaspersky has attributed these intrusions with medium to high confidence to the hacking group known as APT31, which is also recognized by the aliases Bronze Vinewood, Judgement Panda, and Violet Typhoon (previously Zirconium). This conclusion is based on shared tactics observed in the attacks. The intrusions involved over 15 different implants and their variants, categorized into three primary functions: establishing persistent remote access, collecting sensitive data, and transmitting the stolen information to infrastructure controlled by the attackers. Notably, one type of implant appeared to be an advanced modular malware, designed to profile removable drives and infect them with a worm to extract data from isolated air-gapped networks.
International Police Coalition Targets Cybercrime Networks In a significant crackdown on cybercriminal activities, an international coalition of law enforcement agencies has successfully disrupted a variety of online scams, including phishing attempts, credential theft, and ransomware distribution. This operation, known as Synergia II, was spearheaded by Interpol and spanned from early…
