cyberespionage – Page 3 – SSL and internet security news

Biden Administration Imposes Sanctions on Russia for SolarWinds

April 20, 2021 infossl

cyberespionage, espionage, hacking, national security policy, russia, Security technology, Uncategorized

On April 15, the Biden administration both formally attributed the SolarWinds espionage campaign to the Russian Foreign Intelligence Service (SVR), and imposed a series of sanctions designed to punish the country for the attack and deter future attacks. I will leave it to those with experience in foreign relations to convince me that the response … Read More “Biden Administration Imposes Sanctions on Russia for SolarWinds” »

Nation-State Espionage Campaigns against Middle East Defense Contractors

June 23, 2020 infossl

attribution, cyberespionage, espionage, impersonation, linkedin, malware, reports, Security technology

Report on espionage attacks using LinkedIn as a vector for malware, with details and screenshots. They talk about “several hints suggesting a possible link” to the Lazarus group (aka North Korea), but that’s by no means definite. As part of the initial compromise phase, the Operation In(ter)ception attackers had created fake LinkedIn accounts posing as … Read More “Nation-State Espionage Campaigns against Middle East Defense Contractors” »

New Research into Russian Malware

October 2, 2019 infossl

cyberespionage, malware, operationalsecurity, russia, Security technology

There’s some interesting new research about Russian APT malware: The Russian government has fostered competition among the three agencies, which operate independently from one another, and compete for funds. This, in turn, has resulted in each group developing and hoarding its tools, rather than sharing toolkits with their counterparts, a common sight among Chinese and … Read More “New Research into Russian Malware” »

Iranian Cyberespionage Tools Leaked Online

April 19, 2019 infossl

cyberespionage, doxing, hacking, iran, leaks, Security technology

The source code of a set of Iranian cyberespionage tools was leaked online. Powered by WPeMatico

New Report on Chinese Intelligence Cyber-Operations

July 20, 2018 infossl

china, cyberespionage, intelligence, Security technology

The company ProtectWise just published a long report linking a bunch of Chinese cyber-operations over the past few years. The always interesting gruqq has some interesting commentary on the group and its tactics. Lots of detailed information in the report, but I admit that I have never heard of ProtectWise or its research team 401TRG. … Read More “New Report on Chinese Intelligence Cyber-Operations” »

Free Societies are at a Disadvantage in National Cybersecurity

June 19, 2018 infossl

cyberattack, cybercrime, cyberespionage, cybersecurity, nationalsecuritypolicy, privacy, Security technology

Jack Goldsmith and Stuart Russell just published an interesting paper, making the case that free and democratic nations are at a structural disadvantage in nation-on-nation cyberattack and defense. From a blog post: It seeks to explain why the United States is struggling to deal with the “soft” cyber operations that have been so prevalent in … Read More “Free Societies are at a Disadvantage in National Cybersecurity” »

Yet Another Russian Hack of the NSA — This Time with Kaspersky’s Help

October 6, 2017 infossl

cyberattack, cyberespionage, hacking, insiders, kaspersky, leaks, nsa, russia, Security technology

The Wall Street Journal has a bombshell of a story. Yet another NSA contractor took classified documents home with him. Yet another Russian intelligence operation stole copies of those documents. The twist this time is that the Russians identified the documents because the contractor had Kaspersky Labs anti-virus installed on his home computer. This is … Read More “Yet Another Russian Hack of the NSA — This Time with Kaspersky’s Help” »

Russian Hacking Tools Codenamed WhiteBear Exposed

September 1, 2017 infossl

adobe, computersecurity, cyberespionage, espionage, hacking, malware, phishing, russia, Security technology

Kaspersky Labs exposed a highly sophisticated set of hacking tools from Russia called WhiteBear. From February to September 2016, WhiteBear activity was narrowly focused on embassies and consular operations around the world. All of these early WhiteBear targets were related to embassies and diplomatic/foreign affair organizations. Continued WhiteBear activity later shifted to include defense-related organizations … Read More “Russian Hacking Tools Codenamed WhiteBear Exposed” »

APT10 and Cloud Hopper

April 5, 2017 infossl

china, cyberespionage, espionage, malware, Security technology

There’s a new report of a nation-state attack, presumed to be from China, on a series of managed ISPs. From the executive summary: Since late 2016, PwC UK and BAE Systems have been assisting victims of a new cyber espionage campaign conducted by a China-based threat actor. We assess this threat actor to almost certainly … Read More “APT10 and Cloud Hopper” »

Yet Another Government-Sponsored Malware

August 15, 2016 infossl

advancedpersistentthreats, airgaps, cyberespionage, dns, malware, Security technology

Both Kaspersky and Symantec have uncovered another piece of malware that seems to be a government design: The malware — known alternatively as “ProjectSauron” by researchers from Kaspersky Lab and “Remsec” by their counterparts from Symantec — has been active since at least 2011 and has been discovered on 30 or so targets. Its ability … Read More “Yet Another Government-Sponsored Malware” »