Tag Archive for: Recruitment

New Malware, Hacker Recruitment, and Global Threats Unveiled

/in


Welcome to this week’s edition of the Cyber Security News Recap, diving into the forefront of cybersecurity advancements and the latest global threats. Our mission is to arm you with the knowledge needed to safeguard your digital landscape. From the recruitment of pentesters by a notorious hacker group to the discovery of innovative malware exploiting telecommunications protocols, we’ve got you covered.

Emerging Threats and Advanced Malware

One of the most concerning developments is the discovery of GTPDOOR, a Linux malware exploiting the GPRS protocol for stealthy command and control (C2) communication. Originating from the LightBasin hacker collective, this malware poses a significant threat to telecommunications networks, allowing attackers to spy on infected devices and exfiltrate sensitive data. Alongside, the Lazarus group’s exploitation of a Windows Kernel 0-day vulnerability in the wild demonstrates the increasing sophistication of cyber-attacks. Additionally, the startling revelation that millions of GitHub repositories have been infected with malicious code underscores the widespread vulnerability of open-source platforms.

Innovations in Cybersecurity Tools and Techniques

Amidst the alarming news, the cybersecurity community continues to innovate. The release of HackerGPT 2.0, a ChatGPT-powered AI tool for ethical hackers, marks a significant advancement in leveraging artificial intelligence for cybersecurity defense. Similarly, the deployment of the Stellar Cyber Open XDR platform by RSM US aims to enhance the security posture of clients by providing comprehensive threat detection and response capabilities. The publication of the NIST Cybersecurity Framework 2.0 offers updated guidelines for improving cybersecurity practices across industries.

Global Responses and Preventative Measures

On the global stage, the Five Eyes agencies’ exposure of Russian APT29 cloud attack tactics highlights the ongoing cyber espionage activities and the need for increased international cooperation in cybersecurity. Furthermore, the FBI and CISA’s warning about the ALPHV Blackcat ransomware targeting hospitals underscores the…

Source…

As security forces tighten noose, Pak-based terror groups resort to cyber recruitment in J-K: Officials

/in


SRINAGAR :
Pakistan’s intelligence agency and terror groups are now carrying out recruitment in Jammu and Kashmir using applications in cyber and mobile space as direct physical interactions have become difficult due to the security forces’ hawk-eyed vigil, officials said on Sunday.

Fake videos of alleged atrocities committed by the security forces and building a false narrative are now often used by the ISI handlers from Pakistan to whip up emotions among the new recruits, they said, citing intelligence reports and technical surveillance.

Earlier, terrorist sympathisers used to establish physical contact with the prospective recruits to bring them into a terror group’s rank and files. However, after security agencies cracked down on such sympathisers, they changed their modus operandi.

In 2020, over two dozen terror modules were busted by security agencies leading to the arrest of over 40 such sympathisers.

Two surrendered terrorists, Tawar Waghey and Amir Ahmed Mir, who laid down their arms before 34 Rashtriya Rifles of the Army late last month, had given an insight into their joining of terror modules that showed that cyber recruitment was being carried out on a large scale.

Both the terrorists had come in contact with a Pakistan-based handler via Facebook who indoctrinated them before handing them over to a recruiter code-named Khalid and Mohammed Abbas Sheikh.

The two terrorists were provided training online using various links available on public platforms like YouTube and both of them had met their local contact only once in Shopian in south Kashmir, the officials said.

This, according to the officials, is done to avoid exposure of sleeper cells created by Pakistan’s ISI within the valley. Security agencies have busted several modules following intelligence inputs provided by local residents.

The two terrorists, after being recruited into The Resistance Front (TRF), which is believed to be a shadow outfit of banned terror group Lashkar-e-Taiba, were receiving orders as well as religious teachings from Pakistan-based Burhan Hamza.

The officials said there were around 40 such cases…

Source…

RSA Hacked Via Recruitment Plan, F-Secure Says – PC Magazine

/in

F-Secure, which said it had obtained the file, said that the phishing email, titled “2001 Recruitment plan,” contained an Excel file with a malicious Flash payload inside of it. The email appeared to be sent from Beyond.com, the security firm said.
Read more