Author Info

Russian APT28 Hackers Exploit US Company Wi-Fi from Afar In a remarkable demonstration of their capabilities, Russian cyber espionage group APT28, also known as Fancy Bear and linked to Russia's military intelligence agency GRU, successfully infiltrated a U.S. company's Wi-Fi network from a distant location.

Chinese TAG-112 Targets Tibetan Sites with Cobalt Strike in Cyber Espionage A cyber espionage operation linked to Chinese interests, identified as TAG-112, has infiltrated Tibetan media and academic websites. The campaign's primary objective is to deliver Cobalt Strike, a tool for post-exploitation information gathering. Malicious JavaScript and Fake

The cyber threat group known as Mysterious Elephant, aka APT-K-47, has been deploying an advanced iteration of the Asyncshell malware via Hajj-themed lures. This tactic involves misleading victims with a seemingly harmless Microsoft Compiled HTML Help (CHM) file as part of a targeted attack strategy. Threat Actor Background Mysterious Elephant,

Recent research highlights that China's offensive cyber operations are being developed not solely by government agencies but with extensive support from private companies and academic institutions. According to a report by Orange Cyberdefense, many private cybersecurity firms, tech services providers, and universities collaborate with China's government

Fake NFT App Exploits Defender and 2FA, Draining $24K in Cryptocurrency In a recent cybersecurity incident, crafty malware managed to bypass Microsoft Defender and two-factor authentication (2FA), leading to the theft of $24,000 in cryptocurrency. The breach was facilitated through a fake NFT game application, according to findings by

Wiz, a cloud security firm, announced its acquisition of Israeli startup Dazz for $450 million, combining both cash and shares, according to TechCrunch. This strategic move enhances Wiz's suite of services in security remediation and risk management. Enhancing Product Offerings Earlier this year, Wiz introduced Wiz Code, a

A lawsuit filed by Thai activist Jatupat Boonpattararaksa against an Israeli spyware company was dismissed by a Bangkok court on Thursday. The court ruled that there was insufficient evidence to prove that Jatupat's phone had been compromised by Pegasus spyware, a product of NSO Group Technologies. Background on

Cybersecurity experts have identified a malicious campaign exploiting the Python Package Index (PyPI) repository. The attack involved impersonating popular AI models such as OpenAI's ChatGPT and Anthropic's Claude to disseminate a data-stealing malware dubbed JarkaStealer. Malicious Packages Two Python packages, named `gptplus` and `claudeai-eng`, were uploaded

Microsoft has successfully seized 240 websites linked to phishing activities, effectively dismantling the ONNX service. The tech giant has identified the operator behind this malicious network as an individual from Egypt. This action marks a crucial step in Microsoft's ongoing efforts to combat phishing threats and enhance online