Cyberwarfare Archives - Page 4 of 10

Google Blocks Domains of Hack-for-Hire Groups in Russia, India, UAE

Issued by: Security Week

The internet giant has added more than 30 domains used by these threat groups to its Safe Browsing mechanism, which prevents users from accessing them. Hack-for-hire groups are often conflated with entities offering surveillance tools. Google has pointed out that surveillance vendors typically provide the tools needed for spying but leave it up to the…

Malware & Threats

Exiled Iran Group Claims Tehran Hacking Attack

Issued by: Security Week

Iranian state media said earlier that the internal computer system of the municipality of Tehran was targeted in a “deliberate” shutdown Thursday in the latest apparent cyber attack in the country. The People’s Mujahedin of Iran (MEK), which is outlawed in Iran, said in a statement that their operatives inside the country had carried out…

Mobile Security

Microsoft Finds Major Security Flaws in Pre-Installed Android Apps

Issued by: Security Week

According to an advisory released Friday by the Microsoft 365 Defender Research Team, a total of four documented vulnerabilities were found – and fixed – in a mobile framework owned by mce Systems, an Israeli company that provides software to mobile carriers. “Coupled with the extensive system privileges that pre-installed apps have, these vulnerabilities could…

Malware & Threats

Iranian Cyberspy Group Launching Ransomware Attacks Against US

Issued by: Security Week

Also referred to as APT35, Magic Hound, NewsBeef, Newscaster, Phosphorus, and TA453, the advanced persistent threat (APT) actor is known for the targeting of activists, government organizations, journalists, and various other entities. In November 2021, a joint advisory from government agencies in the US, UK, and Australia warned of Iranian state-sponsored attacks targeting critical infrastructure…

Malware & Threats

German Finance Watchdog Sees ‘Very Big’ Risk of Cyberattacks

Issued by: Security Week

Germany’s financial regulator BaFin warned Tuesday of the “very big” risk of cyberattacks targeting the financial sector, a threat it said had become “more likely” since Russia’s war on Ukraine. “The risk that companies in the financial sector will fall victim to cyberattacks or that internal IT security incidents will occur is very big and…

Malware & Threats

Russia-Linked Pipedream/Incontroller ICS Malware Designed to Target Energy Facilities

Issued by: Security Week

The malware, described as a modular ICS attack framework and a collection of custom-made tools, can be used by threat actors to target ICS and SCADA devices, including programmable logic controllers (PLCs) from Schneider Electric and Omron, and OPC UA servers. Advisories and blog posts describing the toolset have been released by industrial cybersecurity firm…

Network Security

SATCOM Cybersecurity Alert Issued as Authorities Probe Possible Russian Attack

Issued by: Security Week

CISA and the FBI have made a series of recommendations to help SATCOM network providers and customers strengthen cybersecurity. Network providers have been advised to implement additional monitoring capabilities for anomalous traffic related to SATCOM equipment. They have also been advised to read a recent threat assessment report from the Office of the Director of…

Malware & Threats

Russian Cyber Restraint in Ukraine Puzzles Experts

Issued by: Security Week

Even before Russian troops poured across the border into Ukraine last month, Western observers had warned of massive attacks on Ukraine’s IT infrastructure, likely launched by Russian government agents or, by proxy, private hackers which give the government plausible deniability. The entire range of cyberattacks is within Russia’s capabilities, from blocking banking systems, shutting down…

Malware & Threats

U.S. State Governments Targeted by Chinese Hackers via Zero-Day in Agriculture Tool

Issued by: Security Week

In a blog post published on Tuesday, cybersecurity research and incident response company Mandiant said it became aware of the campaign in May 2021, when it was called in to investigate an attack on a U.S. state government network. An analysis revealed that the attack had likely been carried out by a Chinese state-sponsored threat…

Network Security

Russia-Ukraine: Threat of Local Cyber Operations Escalating Into Global Cyberwar

Issued by: Security Week

This could all change in a moment – but for now the Russia/Ukraine conflict is likely to redefine the relationship between kinetic and cyber warfare. It began as expected: an increase in military power at the border and an increase in cyber operations against Ukraine designed to prepare the battlefield. Those cyber operations have continued…