Displaying items by tag: Threat actor

Secureworks Counter Threat Unit (CTU) researchers have identified indexes of multiple unsecured internet-facing Elasticsearch databases replaced with a ransom note. The note demands a Bitcoin payment in exchange for the data.

Secureworks Counter Threat Unit researchers find evidence that threat group Bronze President appears to be changing its targeting, believing it to reflect changing intelligence collection requirements of the People’s Republic of China.

ESET researchers have analysed three malicious Android applications targeting customers of eight Malaysian banks.

Cybersecurity company Proofpoint has identified a malware called LastConn which has targeted government institutions in the Middle East and global government organisations associated with geopolitics in the region.

On the 25th of January, ten days after ASIC became aware of a cyber security incident affecting a server used by ASIC, the world was notified of the ASIC hack attack.

A recent press lunch on the ever more important topic of cybersecurity, nation state attacks, staying ahead of breaches, the demise of legacy security vendors and more was hosted by Zscaler, with guest speakers from Cenitex, Ecosystm and Richard Stiennon, author of a fascinating book on the next CyberWar.

A newly discovered threat actor or advanced persistent threat, that is targeting government and private sector organisations in the Middle East, is using NSA exploits leaked by the Shadow Brokers in April last year as part of its arsenal of threats, the security firm Symantec claims.