APT

Security | Aug 28, 2024

Iranian APT teams up with ransomware crews, seen scanning for Check Point CVE, say Feds

Cyberespionage activities morph into ransomware ones – perhaps without Tehran’s blessing, says the FBI

Security | Sep 28, 2023

Threat group is installing a backdoor in compromised Cisco router firmware. NSA says get better kit

"The modified firmware uses a built-in SSH backdoor, allowing BlackTech actors to maintain access to the compromised router without their connections being logged"

Security | May 16, 2023

Chinese APT taps trojanised routers for mystery purposes

Horse Shell has a "penchant for complex structures" (and simple errors)

Security | Apr 18, 2023

Russian APT hacked Cisco routers to hit US government

Cisco "deeply concerned" at attacks on "routers and firewalls globally"

Security | Jun 02, 2022

Kaspersky says Chinese APT demonstrating "seemingly impossible network behaviors"

Threat group's infrastructure "nothing short of extraordinary"

Security | Apr 23, 2022

The Year of the Zero Day: A record 6 a month exploited in 2021

Vendor telemetry is improving...

Security | Mar 02, 2022

Previously undocumented rootkit being deployed by Chinese APT

Daxin malware has some really clever C2 techniques to exfiltrate intelligence

Security | Jan 20, 2022

Unique new UEFI firmware attack dubbed "MoonBounce" spotted by Kaspersky, raises questions

UEFI rootkits survive OS re-installation, hard disk replacement.

Featured | Oct 13, 2021

"MysterySnail" 0day in Win32k used to hit IT, defence firms

Kaspersky, NSA report critical vulns, one used in a major campaign.

document.currentScript.parentNode.innerHTML = (parseInt(document.currentScript.closest('.iteration-container').dataset.length)).toString();