state-sponsored hacking

From Security Week – Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky

[[{"value":"The vulnerability, tracked as CVE-2025-2783, was chained with a second exploit for remote code execution in attacks in Russian. The post Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky…

shaikh Saqib March 26, 2025

News

From The Hacker News – Chinese Hackers Breach Asian Telecom, Remain Undetected for Over 4 Years

A major telecommunications company located in Asia was allegedly breached by Chinese state-sponsored hackers who spent over four years inside its systems, according to a new report from incident response firm Sygnia. The cybersecurity company is tracking the activity under the name Weaver Ant, describing the threat actor as stealthy and highly persistent. The name of the telecom provider was not

shaikh Saqib March 25, 2025

News

From Dark Reading – Chinese Hacker Group Tracked Back to iSoon APT Operation

The group, called FishMonger or Aquatic Panda, is working under contract for the Chinese government to steal data from governmental organizations, Catholic charities, NGOs, think tanks, and more. Read More

shaikh Saqib March 25, 2025

News

From Cyber Security News – Lazarus Hackers Exploiting IIS Servers to Deploy ASP-based Web Shells

Researchers have identified a series of sophisticated attacks by the notorious Lazarus group targeting South Korean web servers. The threat actors have been breaching IIS servers to deploy ASP-based web…

shaikh Saqib March 14, 2025

Articles

From Schneier on Security – Silk Typhoon Hackers Indicted

Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions…

shaikh Saqib March 11, 2025

News

From Cyber Security News – 12 Chinese Hackers Charged For Cyber Attacks on U.S Treasury

The U.S. Department of Justice (DOJ) unsealed indictments today against 12 Chinese nationals linked to state-sponsored cyber espionage campaigns targeting the U.S. Treasury Department, religious organizations, media outlets, and critical…

shaikh Saqib March 6, 2025

News

From Dark Reading – China’s Silk Typhoon APT Shifts to IT Supply Chain Attacks

The nation-state threat group has been breaching providers of remote management tools, identity management providers, and other IT companies to access networks of targeted entities, according to Microsoft. Read More

shaikh Saqib March 6, 2025

News

From The Hacker News – ⚡ THN Weekly Recap: From $1.5B Crypto Heist to AI Misuse & Apple’s Data Dilemma

Welcome to your weekly roundup of cyber news, where every headline gives you a peek into the world of online battles. This week, we look at a huge crypto theft, reveal some sneaky AI scam tricks, and discuss big changes in data protection. Let these stories spark your interest and help you understand the changing threats in our digital world. ⚡ Threat of the Week Lazarus Group Linked to

shaikh Saqib February 24, 2025

News

From Security Week – $1.5 Billion Bybit Heist Linked to North Korean Hackers

[[{"value":"Companies and experts have found evidence linking the $1.5 billion Bybit cryptocurrency heist to North Korean Lazarus hackers. The post $1.5 Billion Bybit Heist Linked to North Korean Hackers appeared…

shaikh Saqib February 24, 2025

Vulnerabilities

From Cybersecurity Help – Russian hackers increasingly target Signal, WhatsApp and Telegram for espionage

One of the most novel techniques observed is the abuse of Signal’s legitimate “linked devices” feature. Read More

shaikh Saqib February 19, 2025

News

From The Hacker News – Hackers Exploited PAN-OS Flaw to Deploy Chinese Malware in Ransomware Attack

An RA World ransomware attack in November 2024 targeting an unnamed Asian software and services company involved the use of a malicious tool exclusively used by China-based cyber espionage groups, raising the possibility that the threat actor may be moonlighting as a ransomware player in an individual capacity. "During the attack in late 2024, the attacker deployed a distinct toolset that had

shaikh Saqib February 13, 2025

News

From Cyber Security News – How to Track Advanced Persistent Threats (APT) Using Threat Intelligence Lookup Tool

An Advanced Persistent Threat (APT) is a sophisticated and stealthy cyberattack designed to gain unauthorized, long-term access to a target’s network. These attacks are meticulously planned and executed by highly…

shaikh Saqib February 12, 2025

Vulnerabilities

From Cybersecurity Help – Sandworm APT targets Ukraine with trojanized Microsoft KMS activation tools

The attackers utilized a BACKORDER loader to deploy DarkCrystal RAT. Read More

shaikh Saqib February 12, 2025

Vulnerabilities

From Cybersecurity Help – North Korean Kimsuky adopted a new tactic to infiltrate targets

The new tactic involves the threat actor tricking individuals into executing PowerShell commands as administrators. Read More

shaikh Saqib February 12, 2025