Lucene search
K

13 matches found

The Hacker News
The Hacker News
added 2025/06/27 10:25 a.m.6 views

Chinese Group Silver Fox Uses Fake Websites to Deliver Sainbox RAT and Hidden Rootkit

A new campaign has been observed leveraging fake websites advertising popular software such as WPS Office, Sogou, and DeepSeek to deliver Sainbox RAT and the open-source Hidden rootkit. The activity has been attributed with medium confidence to a Chinese hacking group called Silver Fox aka Void...

7.1AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2025/04/14 10:0 a.m.21 views

Brass Typhoon: The Chinese Hacking Group Lurking in the Shadows

Though less well-known than groups like Volt Typhoon and Salt Typhoon, Brass Typhoon, or APT 41, is an infamous, longtime espionage actor that foreshadowed recent telecom hacks...

7.4AI score
Exploits0
Schneier on Security
Schneier on Security
added 2024/08/06 11:1 a.m.11 views

On the Cyber Safety Review Board

When an airplane crashes, impartial investigatory bodies leap into action, empowered by law to unearth what happened and why. But there is no such empowered and impartial body to investigate CrowdStrikes faulty update that recently unfolded, ensnarling banks, airlines, and emergency services to t...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2023/08/29 2:54 p.m.75 views

Chinese Hacking Group Exploits Barracuda Zero-Day to Target Government, Military, and Telecom

A suspected Chinese-nexus hacking group exploited a recently disclosed zero-day flaw in Barracuda Networks Email Security Gateway ESG appliances to breach government, military, defense and aerospace, high-tech industry, and telecom sectors as part of a global espionage campaign. Mandiant, which i...

9.8CVSS6.8AI score0.86956EPSS
Exploits3
The Hacker News
The Hacker News
added 2023/08/05 7:52 a.m.74 views

Reptile Rootkit: Advanced Linux Malware Targeting South Korean Systems

Threat actors are using an open-source rootkit called Reptile to target Linux systems in South Korea. "Unlike other rootkit malware that typically only provide concealment capabilities, Reptile goes a step further by offering a reverse shell, allowing threat actors to easily take control of...

6.7AI score
Exploits0
hivepro
hivepro
added 2023/02/14 1:28 p.m.17 views

Revealing the Tonto Team’s Latest Hacks and Menaces

Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary The Tonto Team, a Chinese hacking group, has been linked to attacks on various Asian and Eastern European organizations. In June 2022, an advanced persistent threat APT attempted to hack a cybersecurity...

2.7AI score
Exploits0
The Hacker News
The Hacker News
added 2022/05/25 10:19 a.m.41 views

Researchers Find New Malware Attacks Targeting Russian Government Entities

An unknown advanced persistent threat APT group has been linked to a series of spear-phishing attacks targeting Russian government entities since the onset of the Russo-Ukrainian war in late February 2022. "The campaigns ... are designed to implant a Remote Access Trojan RAT that can be used to...

1.5AI score
Exploits0
The Hacker News
The Hacker News
added 2020/09/16 4:50 p.m.7 views

FBI adds 5 Chinese APT41 hackers to its Cyber's Most Wanted List

The United States government today announced charges against 5 alleged members of a Chinese state-sponsored hacking group and 2 Malaysian hackers that are responsible for hacking more than 100 companies throughout the world. Named as APT41 and also known as 'Barium,' 'Winnti, 'Wicked Panda,' and...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2019/05/29 6:50 p.m.218 views

Hackers Infect 50,000 MS-SQL and PHPMyAdmin Servers with Rootkit Malware

Cyber Security researchers at Guardicore Labs today published a detailed report on a widespread cryptojacking campaign attacking Windows MS-SQL and PHPMyAdmin servers worldwide. Dubbed Nansh0u, the malicious campaign is reportedly being carried out by an APT-style Chinese hacking group who has...

7.8CVSS2AI score0.87042EPSS
Exploits22
Wired Threat Level
Wired Threat Level
added 2018/10/18 4:1 a.m.48 views

The Mysterious Return of Years-Old APT1 Malware

Security researchers have discovered a new instance code associated with APT1, a notorious Chinese hacking group that disappeared in 2013...

2.1AI score
Exploits0
The Hacker News
The Hacker News
added 2015/04/13 5:56 a.m.13 views

Chinese Hackers Target Air-Gapped Networks in Southeast Asia

A State-sponsored Cyber Espionage Group -- most likely linked to the Chinese government becomes the first group to target the so-called "Air-Gapped Networks" that aren't directly connected to the Internet. What are Air-Gapped systems? Air-gapped systems are known to be the most safest and secure...

7AI score
Exploits0
myhack58
myhack58
added 2014/08/28 12:0 a.m.16 views

Community Health data leak suspected of the use of the Heartbleed vulnerability-a vulnerability warning-the black bar safety net

When the Heartbleed OpenSSL vulnerability in 4 months is discovered, the security community many experts are warning that the vulnerability could be used to expose sensitive data, although at the time also there is no evidence that attackers are actively using Heartbleed vulnerability. And now, a...

0.7AI score
Exploits0
ThreatPost
ThreatPost
added 2012/11/27 4:25 p.m.15 views

PlugX is Becoming Mature

By Dmitry Tarakanov Recently, a new Remote Administration Tool has been discovered that started appearing here and there in targeted attacks. This tool is “PlugX”. Researchers have even tracked someone suspected of creating that malware – one of the members of the Chinese hacking group NCPH, whic...

1.4AI score
Exploits0References1
Rows per page
Query Builder