Articles about cyber-espionage

Kremlin hacking crew went on a 'Roman Holiday' – researchers

Researchers have claimed the infamous APT28 Kremlin-linked hacking group was behind a new cyber-espionage campaign they believe was targeted at the Italian military. Security researchers from the Z-Lab at CSE Cybsec spent the weekend unpicking a new malware-base cyber-espionage campaign allegedly conducted by APT28 (AKA Fancy …
John Leyden, 16 Jul 2018
Russian hacking

US says it's identified six Russian officials as DNC hack suspects

The US government has identified "more than six members of the Russian government" involved in hacking the Democratic National Committee's computers and leaking information during last year's presidential election. The Wall Street Journal reports that Justice Department officials are in the early stages of deciding whether to …
John Leyden, 2 Nov 2017
spies_648

Spy vs spy vs hacker vs... who is THAT? Everyone's hacking each other

VB2017 Intel agencies and top-tier hackers are actively hacking other hackers in order to steal victim data, borrow tools and techniques, and reuse each other's infrastructure, attendees at Virus Bulletin Con, Madrid, were told yesterday. The increasing amount of spy-vs-spy type activity is making accurate threat intel increasingly …
John Leyden, 5 Oct 2017

Should you stay awake at night worrying about hackers on the grid?

Analysis The energy sector across multiple Western countries is under intensified assault by hackers. Security experts warn that industrial systems are wide open to potential exploit once hackers secure a foothold, the most difficult part of the hacking process, using targeted phishing or similar tactics. The UK's government lead cyber …
John Leyden, 28 Jul 2017
Cat attacking

Crappy hacker crew fingered for Bundestag snooping operation

Security researchers have lifted the lid on a new cyber-espionage crew that has targeted the German Bundestag and Turkish diplomats. CopyKittens has attacked government, security and academic institutions, websites in Germany and Turkey, as well as United Nations employees and organisations in Saudi Arabia, Israel and Jordan …
John Leyden, 25 Jul 2017
hacker

Kremlin hackers' new target: Montenegro

The prolific Kremlin-backed hacking crew blamed for attacking the US Democratic National Committee last year has targeted the Montenegro government with cyberattacks, according to cybersecurity company FireEye. The assaults were motivated by Montenegro's decision to join the North Atlantic Treaty Organization (NATO), a move …
John Leyden, 6 Jun 2017
Ben Mezrich, Once Upon a Time in Russia: The Rise of the Oligarchs and the Greatest Wealth in History

Russia is struggling to keep its cybercrime groups on a tight leash

Russia's control of cybercrime groups that have come to play a part in its espionage activity is crumbling, according to Cybereason. The security intelligence outfit reached this conclusion after reviewing the latest tactics and procedures associated with high-profile cyber-espionage pops blamed on the Kremlin. Russia has made …
John Leyden, 6 Jun 2017

NORK spy agency blamed for Bangladesh cyberheist, Sony Pictures hack

A fresh analysis, from a slightly different perspective, once again fingered North Korea as the likely culprit behind hacks against Sony Pictures and the $81m heist from an account held by the Central Bank of Bangladesh. Moscow-based threat intelligence firm Group-IB has "no doubt" that Lazarus Group – a cybergang that …
John Leyden, 30 May 2017

Team Macron praised for feeding phishing spies duff info

Emmanuel Macron's campaign team reportedly used fake logins and docs to waste hacker resources and frustrate phishing attempts. Although the newly elected French president's campaign was still hacked before the release of emails and other information last Friday, Team Macron's interference tactics have been heralded by at …
John Leyden, 8 May 2017
BA Baracus modifies a car in The A-Team: The Original Series - copyright NBc

'A-Team'-style tactics: Legit tool welded to kitchen sink to make off-the-shelf snoop kit

A newly discovered hacking crew is creating all sorts of mischief, despite largely relying on off-the-shelf tools rather than custom malware. The Netrepser crew are targeting government agencies and organisations using a malware toolkit built around a legitimate, yet controversial recovery toolkit provided by Nirsoft. Cyber …
John Leyden, 5 May 2017
Hacker

Sneaky 'fileless' malware flung at Israeli targets via booby-trapped Word docs

A newly uncovered cyber-espionage campaign targeting Israeli organisations relies on "fileless" malware hidden in Microsoft Word documents, a hacker tactic that's becoming a growing menace. The attack was delivered through compromised email accounts at Ben-Gurion University and sent to multiple targets across Israel. Malware …
John Leyden, 28 Apr 2017
shutterstock_206717503

Kremlin-backed DNC hackers going after French presidential hopeful Macron

The Russian cyberespionage group blamed for the infamous US Democratic National Committee email leak launched targeted phishing attacks against French presidential candidate Emmanuel Macron's campaign as recently as last month. Security researchers at Trend Micro warn that the APT28 crew have also targeted Germany's Christian …
John Leyden, 25 Apr 2017
Brexit - arrow points to leave

MPs worried Brexit vote website wobble caused by foreign hackers

A committee of MPs has expressed concerns that foreign hackers might have had a hand in crashing the UK's voter registration website last year shortly before the Brexit referendum. The Public Administration Committee concluded that a foreign cyber attack remains a potential reason that the "register to vote" site crashed on 7 …
John Leyden, 12 Apr 2017

Shadow Brokers crack open NSA hacking tool cache for world+dog

The self-styled Shadow Brokers group has made a collection of NSA hacking tools and exploits publicly available. The group released a password for their archive, making it available to all and sundry. They (unsuccessfully) attempted to auction off the trove last year. In a (ranty) statement, Shadow Brokers said it was making …
John Leyden, 10 Apr 2017
Trump

'Evidence of Chinese spying' uncovered on eve of Trump-Xi summit

Evidence of Chinese cyber-espionage against the US has been uncovered on the eve of an important Sino-US presidential summit. The "Scanbox" malware – used by nation-state threat actors associated with or sponsored by the Chinese government – has been discovered embedded on webpages on the US National Foreign Trade Council ( …
John Leyden, 6 Apr 2017
A Chinese laundry on the back streets of Shanghai

China-based hacking crew pokes holes in UK firms and drains data

UK companies are being targeted by a China-based global hacking group dubbed APT10. The Operation Cloud Hopper campaign focuses on managed service providers (MSPs) which, when successful, gives the APT10 hackers access to their intellectual property, sensitive data, and global clients. A number of Japanese organisations have …
John Leyden, 4 Apr 2017

Kremlin hackers suspected in assault on athletics governing body

The IAAF has been hacked and it blames the notorious Russian hacking group APT 28, also known as FANCY BEAR, for the attack which targeted athletes'Therapeutic Use Exemption (TUE) applications stored on IAAF servers. The attack was uncovered by Context Information Security, a cyber incidence response firm contracted by the …
John Leyden, 3 Apr 2017

Kremlin-linked hacker crew's tactics exposed

Security researchers have published more intel on the tactics of the infamous Russian government-linked hacker crew blamed for compromising the Democratic National Committee (DNC) during last year's US presidential election. A report by SecureWorks' Counter Threat Unit offers an analysis of the connection between the APT 28 …
John Leyden, 31 Mar 2017

Create a news alert about cyber-espionage, or find more stories about cyber-espionage.

Biting the hand that feeds IT © 1998–2018