Cyber Espionage

The Hacker News Campaigns Microsoft Linux 1d ago

VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances

A China-nexus cyber espionage group has been observed deploying a BSD variant of a known backdoor called BRICKSTORM, as well as two other malware families co...

The Hacker News →

Security Affairs Campaigns Microsoft Broadcom 6d ago

Cyber espionage campaign targeted stock exchange executive’s Outlook account

Attackers spent five months silently stealing emails from a stock exchange executive’s Outlook account in a suspected espionage operation. A threat actor qui...

Security Affairs →

GBHackers TTPs Amazon 6d ago

HazyBeacon Campaign Abuses AWS for Stealthy C2 Communications

A newly documented cyber espionage operation known as HazyBeacon, tracked as CL-STA-1020, is leveraging Amazon Web Services (AWS) to build stealthy command-a...

T1071

GBHackers →

GBHackers Campaigns Intel Jun 2

Foreign Spyware Found on Phones of Top Russian Officials

Russian authorities have disclosed a suspected large-scale cyber espionage operation targeting the mobile devices of senior government officials, raising fre...

GBHackers →

The Hacker News Campaigns Jun 1

China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to delive...

T1566

The Hacker News →

GBHackers Campaigns Microsoft May 25

APT Group Patches termsrv.dll to Enable Multiple RDP Sessions

A sustained cyber espionage campaign attributed to the Cloud Atlas advanced persistent threat (APT) group has introduced a stealthy technique that modifies t...

GBHackers →

GBHackers Campaigns Linux May 25

Kazuar Malware Becomes Modular Spyware for Secret Blizzard Ops

A major evolution in the Kazuar malware family, a long-standing cyber espionage tool linked to the Russian state-sponsored threat group Secret Blizzard, also...

T1598

GBHackers →

GBHackers TTPs Microsoft May 20

GraphWorm Malware Abuses Microsoft OneDrive for Stealthy C2 Operations

A new activity from Webworm, a China-aligned advanced persistent threat (APT) group, revealing a significant evolution in its cyber espionage toolkit during ...

GBHackers →

Infosecurity Magazine TTPs May 20

China-Linked Webworm APT Evolves Tactics, Expands to European Targets

China-linked Webworm APT expands beyond Asia, targeting European government organizations and refining its cyber espionage tactics, according to ESET research

Infosecurity Magazine →

GBHackers Campaigns Microsoft Cloudflare May 18

Hackers Abuse Cloudflare Storage to Exfiltrate Network Files

A sophisticated cyber espionage campaign targeting multiple Malaysian organizations has been uncovered, revealing a highly structured attack chain that blend...

T1041 1 IOC

GBHackers →

Infosecurity Magazine Campaigns Apr 9

Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group

A spear-phishing campaign which spread across the Middle East between 2023 and 2024 has now been linked to Bitter APT group

T1566

Infosecurity Magazine →

Infosecurity Magazine Campaigns Proofpoint Apr 1

Chinese Hackers Target European Governments in Espionage Campaigns

Chinese state-backed group TA416 had suspended its cyber espionage operations in Europe since 2023, noted Proofpoint

Infosecurity Magazine →