China-Linked Actors Compromise Routers and IoT Devices for Botnet Operations
A joint cybersecurity advisory revealing that cyber actors linked to the People’s Republic of China (PRC) have compromised thousands of internet-connected devices.
APT
Iranian APT34 Targets Iraqi Government with New Veaty and Spearal Malware Campaign
On September 12, 2024, the Cybersecurity and Infrastructure Security Agency (CISA) released a comprehensive set of 25 advisories targeting vulnerabilities in industrial control systems (ICS).
Ransomware in the Cloud: Scattered Spider Targets Financial and Insurance Sectors
The report identifies SCATTERED SPIDER, a cybercriminal group known for using voice and SMS phishing to infiltrate cloud-based environments, as a significant threat actor.
BlindEagle Targets Colombian Insurance Sector with BlotchyQuasar RAT
A resurgence of activity by BlindEagle, a South American-focused APT actor, also known as APT-C-36. BlindEagle has a history of targeting individuals and organizations, particularly within the government and financial sectors of Colombia and Ecuador.
North Korean Cyber Threat Groups Unleash New Malware Arsenal in 2024
On September 9, 2024, Palo Alto Networks' Unit 42 released a detailed threat assessment outlining the activities of various North Korean cyber threat groups operating under the Reconnaissance General Bureau (RGB).
Earth Preta Evolves Malware Tactics with Advanced Strategies
The group’s focus has remained within the Asia-Pacific (APAC) region, targeting government entities using worm-based malware and spear-phishing campaigns.
ToneShell Backdoor Used to Target Attendees of the IISS Defence Summit
The group is known for its cyber espionage activities targeting government organizations, primarily in Southeast and East Asia. This recent campaign, however, focuses on attendees of the upcoming International Institute for Strategic Studies (IISS) Defence Summit