Chinese cyber espionage

From Security Week – Chinese I-Soon Hackers Hit 7 Organizations in Operation FishMedley

[[{"value":"The FishMonger APT group, a subdivision of Chinese cybersecurity firm I-Soon, compromised seven organizations in a 2022 campaign. The post Chinese I-Soon Hackers Hit 7 Organizations in Operation FishMedley appeared…

shaikh Saqib March 21, 2025

Vulnerabilities

From Cybersecurity Help – Cyber Security Week in Review: March 14, 2025

In brief: Microsoft, Apple fix zero-days, LockBit ransomware dev extradited to the US, and more. Read More

shaikh Saqib March 14, 2025

Vulnerabilities

From Cybersecurity Help – US сharges APT27 and i-Soon hackers with cyberattacks on entities across globe

The US authorities are offering a reward of up to $10 million for information leading to the capture and conviction of the suspects. Read More

shaikh Saqib March 6, 2025

News

From The Hacker News – U.S. Charges 12 Chinese Nationals in State-Backed Hacking Operations

The U.S. Department of Justice (DoJ) has announced charges against 12 Chinese nationals for their alleged participation in a wide-ranging scheme designed to steal data and suppress free speech and dissent globally. The individuals include two officers of the People's Republic of China's (PRC) Ministry of Public Security (MPS), eight employees of an ostensibly private PRC company, Anxun

shaikh Saqib March 6, 2025

News

From Cyber Security News – 12 Chinese Hackers Charged For Cyber Attacks on U.S Treasury

The U.S. Department of Justice (DOJ) unsealed indictments today against 12 Chinese nationals linked to state-sponsored cyber espionage campaigns targeting the U.S. Treasury Department, religious organizations, media outlets, and critical…

shaikh Saqib March 6, 2025

News

From Security Week – China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain

[[{"value":"Silk Typhoon APT caught using IT supply chain entry points to conduct reconnaissance, siphon data, and move laterally on victim networks. The post China Hackers Behind US Treasury Breach Caught…

shaikh Saqib March 5, 2025

Vulnerabilities

From Cybersecurity Help – Chinese Silk Typhoon APT now leverages IT supply chain attacks to gain access to targets

Instead of directly attacking cloud services, the group exploits unpatched IT solutions to gain initial access. Read More

shaikh Saqib March 5, 2025

News

From The Hacker News – Hackers Exploited PAN-OS Flaw to Deploy Chinese Malware in Ransomware Attack

An RA World ransomware attack in November 2024 targeting an unnamed Asian software and services company involved the use of a malicious tool exclusively used by China-based cyber espionage groups, raising the possibility that the threat actor may be moonlighting as a ransomware player in an individual capacity. "During the attack in late 2024, the attacker deployed a distinct toolset that had

shaikh Saqib February 13, 2025

News

From The Hacker News – XE Hacker Group Exploits VeraCore Zero-Day to Deploy Persistent Web Shells

Threat actors have been observed exploiting multiple security flaws in various software products, including Progress Telerik UI for ASP.NET AJAX and Advantive VeraCore, to drop reverse shells and web shells, and maintain persistent remote access to compromised systems. The zero-day exploitation of security flaws in VeraCore has been attributed to a threat actor known as XE Group, a cybercrime

shaikh Saqib February 10, 2025

News

From Cyber Security News – Hackers Compromising IIS Servers to Deploy BadIIS Malware

A widespread campaign targeting Microsoft Internet Information Services (IIS) servers to deploy the BadIIS malware, a tool used for search engine optimization (SEO) fraud and malicious content injection. The campaign,…

shaikh Saqib February 9, 2025