Tag Archive for: phishes

Industrial systems under threat. Lazarus resumes Operation Dream Job. OldGremlin phishes in Russia.

/in


Dateline Moscow and Kyiv: Russian preparations for cyberattacks against the energy sector.

Ukraine at D+49: Exchanges of kinetic fire, and preparation for cyberattacks against ICS/SCADA. (The CyberWire) Ukraine says it’s hit the guided missile cruiser Moskva with anti-ship missiles. The US warns of Russian preparations for cyberattacks against ICS and SCADA systems (and both government and industry have published details on the tools they’ve found). On the ground, Russia continues to resort to heavy and indiscriminate fires as it seeks to reduce cities in the Donbas and along the Black Sea coast.

Ukraine Update: U.S., EU to Send More Arms; Warship Damaged (Bloomberg) President Joe Biden announced $800 million in additional U.S. military aid for Ukraine and the European Union agreed to provide more cash for weapons, as Russia repositions its forces for renewed attacks in eastern and southern parts of its neighbor.

Ukraine says it damaged Russian flagship, crew evacuates (AP NEWS) Ukraine said its forces struck and seriously damaged the flagship of Russia’s Black Sea fleet, dealing a potentially major setback to Moscow’s troops as they try to regroup for a renewed offensive in eastern Ukraine after retreating from much of the north, including the capital.

Russian warship notorious for firing on Snake Island defenders ‘seriously damaged’ after blast (The Telegraph) The Moskva missile cruiser was struck by two Ukrainian missiles, the Ukrainian governor of the region said

Russia says warship ‘seriously damaged’ by explosion as Putin builds forces in east Ukraine (the Guardian) Ukraine says it struck the Moskva with two anti-ship missiles without giving evidence as Zelenskiy says Russia ramping up offensive in east and south

One Of Russia’s Biggest Cruisers May Have Sunk Near Ukraine (Forbes) There are unconfirmed reports that a Ukrainian navy missile battery has struck the Russian navy cruiser Moskva off the coast of Odessa, a strategic port city on the Black Sea in southwest Ukraine.

Russia to consider US and NATO vehicles carrying weapons in Ukraine as legitimate military targets (TDPel Media) “We are warning that we will consider US-NATO transports with weapons moving through the…

Source…

Lazarus Group phishes for hacking tools. Rockethack’s odd position in the C2C market. CISA’s holiday advice. SEC scam warning.

/in


Attacks, Threats, and Vulnerabilities

North Korean Hackers Caught Snooping on China’s Cyber Squad (The Daily Beast) North Korean hackers are under fierce pressure to raise revenue to fund regime goals. Now they’re trying to spy on Chinese security researchers to get better hacking tools.

Void Balaur explained—a stealthy cyber mercenary group that spies on thousands (CSO Online) Unlike other groups, Void Balaur will target individuals and organizations in Russian-speaking countries and seems to have intimate knowledge of telecom systems.

APT41’s cyber attack methods are a blueprint for hacker groups- TechHQ (TechHQ) APT41’s cyberattack methods is becoming the blueprint for other hacker groups to launch attacks on the supply chain and other industries as well.

Reminder for Critical Infrastructure to Stay Vigilant Against Threats During Holidays and Weekends (CISA) As Americans prepare to hit the highways and airports this Thanksgiving holiday, CISA and the Federal Bureau of Investigation (FBI) are reminding critical infrastructure partners that malicious cyber actors aren’t making the same holiday plans as you. Recent history tells us that this could be a time when these persistent cyber actors halfway across the world are looking for ways—big and small—to disrupt the critical networks and systems belonging to organizations, businesses, and critical infrastructure. 

New ‘SharkBot’ Android Banking Malware Hitting U.S., UK and Italy Targets (SecurityWeek) A newly discovered Android banking trojan has been observed targeting international banks and five different cryptocurrency services.

Github cookie leakage – thousands of Firefox cookie files uploaded by mistake (Naked Security) Be aware before you share! That’s a good rule for developers and techies, just as much as it is for social media addicts.

Space cyber wargame exposes satellite industry risks (README) Space industry executives grappled with a simulated crisis Monday as a hacker compromised a satellite and set it on a collision course.

US SEC warns investors of ongoing govt impersonation attacks (BleepingComputer) The Securities and Exchange Commission (SEC) has warned US investors of scammers impersonating SEC…

Source…