Lucene search
K

9 matches found

HackRead
HackRead
added 2022/08/15 5:39 p.m.24 views

Windows, Linux and macOS Users Targeted by Chinese Iron Tiger APT Group

By Deeba Ahmed Chinese Espionage Group called Iron Tiger aka LuckyMouse is targeting Windows, Linux, and macOS Users with trojanized MiMi… This is a post from HackRead.com Read the original post: Windows, Linux and macOS Users Targeted by Chinese Iron Tiger APT Group...

3.8AI score
Exploits0
Securelist
Securelist
added 2021/08/12 10:0 a.m.615 views

IT threat evolution Q2 2021

Targeted attacks The leap of a Cycldek-related threat actor It is quite common for Chinese-speaking threat actors to share tools and methodologies: one such example is the infamous "DLL side-loading triad": a legitimate executable, a malicious DLL to be side-loaded by it and an encoded payload,...

9.3CVSS0.99999EPSS
Exploits84
The Hacker News
The Hacker News
added 2021/04/29 2:46 p.m.36 views

LuckyMouse Hackers Target Banks, Companies and Governments in 2020

An adversary known for its watering hole attacks against government entities has been linked to a slew of newly detected intrusions targeting various organizations in Central Asia and the Middle East. The malicious activity, collectively named "EmissarySoldier," has been attributed to a threat...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/04 8:26 a.m.7 views

CISA Issues Emergency Directive on In-the-Wild Microsoft Exchange Flaws

Following Microsoft's release of out-of-band patches to address multiple zero-day flaws in on-premises versions of Microsoft Exchange Server, the U.S. Cybersecurity and Infrastructure Security Agency CISA has issued an emergency directive warning of "active exploitation" of the vulnerabilities. T...

9.8CVSS7.3AI score0.99999EPSS
Exploits63
Securelist
Securelist
added 2018/11/12 10:0 a.m.177 views

IT threat evolution Q3 2018

Targeted attacks and malware campaigns Lazarus targets cryptocurrency exchange Lazarus is a well-established threat actor that has conducted cyber-espionage and cybersabotage campaigns since at least 2009. In recent years, the group has launched campaigns against financial organizations around th...

9.3CVSS7.8AI score0.91324EPSS
Exploits13
Securelist
Securelist
added 2018/09/10 10:0 a.m.42 views

LuckyMouse signs malicious NDISProxy driver with certificate of Chinese IT company

What happened? Since March 2018 we have discovered several infections where a previously unknown Trojan was injected into the lsass.exe system process memory. These implants were injected by the digitally signed 32- and 64-bit network filtering driver NDISProxy. Interestingly, this driver is sign...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2018/06/14 3:10 p.m.5 views

Chinese Hackers Carried Out Country-Level Watering Hole Attack

Cybersecurity researchers have uncovered an espionage campaign that has targeted a national data center of an unnamed central Asian country in order to conduct watering hole attacks. The campaign is believed to be active covertly since fall 2017 but was spotted in March by security researchers fr...

9.3CVSS7.3AI score0.99945EPSS
Exploits33
The Hacker News
The Hacker News
added 2018/06/14 3:10 p.m.403 views

Chinese Hackers Carried Out Country-Level Watering Hole Attack

Cybersecurity researchers have uncovered an espionage campaign that has targeted a national data center of an unnamed central Asian country in order to conduct watering hole attacks. The campaign is believed to be active covertly since fall 2017 but was spotted in March by security researchers fr...

9.3CVSS0.6AI score0.99945EPSS
Exploits33
Securelist
Securelist
added 2018/06/13 10:0 a.m.93 views

LuckyMouse hits national data center to organize country-level waterholing campaign

What happened? In March 2018 we detected an ongoing campaign targeting a national data center in the Central Asia that we believe has been active since autumn 2017. The choice of target made this campaign especially significant – it meant the attackers gained access to a wide range of government...

0.1AI score
Exploits0
Rows per page
Query Builder