Articles about apt

Johnny English

UK.gov teams up with Five Eyes chums to emit spotters' guide for miscreants' hack tools

The UK's National Cyber Security Centre and its western intel pals have today put out a report spotlighting the most commonly wielded hacking utilities. The study sets out five categories of publicly available hacking tools used by crims, spies and hacktivists worldwide. The list won't come as too much of a surprise to …
John Leyden, 11 Oct 2018
hacker

China's clampdown on Tor pushes its hackers into foreign backyards

Underground hacker forums in China and Russia are as different as each country's regular shopping bazaars, according to research from Recorded Future. Both Russian and Chinese forums host a wide variety of international content. Russian forums rarely if ever feature data dumps from Russian firms. By contrast, data dumps and …
John Leyden, 10 Oct 2018
Kim Jong Un

'Desperate' North Korea turns to bank hacking sprees to rake in much-needed dosh

Hackers backed by the North Korea government are attempting to ransack foreign banks to raise funds for the cash-strapped hermit nation. Researchers at FireEye say that a gang dubbed APT38* are trying to pull off a billion-dollar money grab, and are working separate from the infamous Nork-sponsored Lazarus group. According to …
Shaun Nichols, 3 Oct 2018

Resident evil: Inside a UEFI rootkit used to spy on govts, made by you-know-who (hi, Russia)

A UEFI rootkit, believed to have been built by Kremlin spies from an anti-thief software program to snoop on European governments, has been publicly picked apart by researchers. A rootkit is a piece of software that hides itself on computer systems, and uses its root or administrator-level privileges to steal and alter …
John Leyden, 28 Sep 2018
phishing

Cobalt cybercrooks phry up phishing campaign to phling at phinance orgs

A notorious hacking group suspected in attacks across dozens of countries has launched a campaign against banks in eastern Europe and Russia. The so-called Cobalt Group is slinging spear-phishing emails in an attempt to get into the systems of targeted financial organisations. The emails are set up to look like they were sent …
John Leyden, 31 Aug 2018
Bank vault

Hackers faked Cosmos backend to hoodwink bank out of $13.5m

Security researchers have taken a deep dive into the cyber attack on the SWIFT/ATM infrastructure of Cosmos Bank, the recent victim of a $13.5m cyber-heist. Experts at Securonix have outlined the most likely progression of the attack against the bank, the latest financial institution to face hacks blamed on state-backed North …
John Leyden, 29 Aug 2018

Kremlin hacking crew went on a 'Roman Holiday' – researchers

Researchers have claimed the infamous APT28 Kremlin-linked hacking group was behind a new cyber-espionage campaign they believe was targeted at the Italian military. Security researchers from the Z-Lab at CSE Cybsec spent the weekend unpicking a new malware-base cyber-espionage campaign allegedly conducted by APT28 (AKA Fancy …
John Leyden, 16 Jul 2018
Buildings in Dnepr City seen from the Dnieper River, ukraine

Ukraine claims it blocked VPNFilter attack at chemical plant

A Ukrainian intel agency has claimed it stopped a cyber attack against a chlorine plant that was launched using the notorious VPNFilter malware. Ukraine's SBU Security Service said it thwarted an attack on network equipment belonging to the LLC Aulska chlorine plant in Auly, about an hour away from Dnepr City in Dnipropetrovsk …
John Leyden, 13 Jul 2018
Burning money

A year after devastating NotPetya outbreak, what have we learnt? Er, not a lot, says BlackBerry bod

Today (27 June) marks the first anniversary since the NotPetya ransomware ravaged a range of businesses from shipping ports and supermarkets to ad agencies and law firms. Once in a system, the code sought to encrypt files and destroyed master boot records, leaving infected Windows machines useless. The malware spread using the …
John Leyden, 27 Jun 2018

Hackers target payment transfer system at Chile's biggest bank, 'take $10m'

Banco de Chile has become the latest victim in a string of cyber attacks targeting the payment transfer systems of banks. The country's largest bank was hit on 24 May and thousands of workstations hobbled. The ransomware attack was well documented locally and the bank has apologised for disruptions, which ran into days. …
John Leyden, 11 Jun 2018
boomerang

Hey, govt hacker bod. Made some really nasty malware? Don't be upset if it returns to bite you

RSA 2018 "You don't launch a cyber weapon, you share it." This was a reminder issued to RSA Conference attendees, in San Francisco on Tuesday, by two security researchers, who warned that advanced malware strains, particularly those developed by government hackers, can be captured and repurposed by cash-strapped miscreants to build a …
Shaun Nichols, 18 Apr 2018
illustration showing russian president vladimir putin winking

GCHQ boss calls out Russia for 'industrial scale disinformation'

GCHQ‬ boss Jeremy Fleming has hailed the success of a cyber-offensive against ISIS last year and warned of the growing threat posed by Russia. During a wide-ranging speech at the CyberUK conference in Manchester on Thursday morning, Fleming said a cyber operation last year had disrupted ISIS's [Daesh] communications. In 2017 …
John Leyden, 12 Apr 2018
Person hides face in shocked anticipation of something horrible. Photo via shutterstock

UK defines Cyber DEFCON 1, 2 and 3, though of course doesn't call it that

The UK government has launched a new cyber attack categorisation that is designed to improve response to incidents – sadly it doesn't go up to 11.* Categorisation into bands ranging from six down towards one (the most severe) will span the full range of incidents from localised attacks against individuals or SMEs up to " …
John Leyden, 12 Apr 2018
A Chinese laundry on the back streets of Shanghai

China ALTERED its public vuln database to conceal spy agency tinkering – research

China has altered public vulnerability data to conceal the influence of its spy agency in the country's national information security bug reporting process. The damning finding from threat intel firm Recorded Future follows months of research examining the publication speed for China’s National Vulnerability Database (CNNVD …
John Leyden, 12 Mar 2018

CryptoLurker hacker crew skulk about like cyberspies, earn $$$

A sophisticated mystery hacker group is using tactics more familiar to the world of cyber espionage to earn millions through mining malware. Kaspersky Lab researchers report that cybercrooks have begun using infection methods and techniques borrowed from targeted attacks in order to install mining software. The most …
John Leyden, 6 Mar 2018
guard dog

GCHQ unit claims it has 'objectively' made the UK a less desirable target to cybercrims

GCHQ's National Cyber Security Centre claims that its strategy of "actively defending" the UK against high-volume commodity attacks is working. The Active Cyber Defence (ACD) programme aims to "protect the majority of people in the UK from the majority of the harm, caused by the majority of the attacks, for the majority of the …
John Leyden, 5 Feb 2018
Putin

Kremlin social media trolls aren't actually that influential, study finds

The effect of Russian trolls influencing opinion through social media is far more minor than commonly supposed, according to a new study. It is believed Kremlin agents orchestrated efforts to manipulate public opinion on the web, often around major political events such as the US presidential election, through dedicated …
John Leyden, 30 Jan 2018
I AM NIKOM / Shutterstock.com

Android snoopware Skygofree can pilfer WhatsApp messages

Mobile malware strain Skygofree may be the most advanced Android-infecting nasties ever, antivirus-flinger Kaspersky Lab has warned. Active since 2014, Skygofree, named after one of the domains used in the campaign, is spread through web pages mimicking leading mobile network operators and geared towards cyber-surveillance. …
John Leyden, 16 Jan 2018

Create a news alert about apt, or find more stories about apt.

Biting the hand that feeds IT © 1998–2018