Cisco Talos reports that the Lazarus Group leverages the ManageEngine ServiceDesk vulnerability to target a midsized internet backbone provider in the UK and multiple health care entities in the United States.
TraderTraitor is one of North Korea’s greatest weapons in its “hack for profit” schemes, and has a long and successful history of targeting cryptocurrency companies and other sectors for financial gain.
Organizations across Asia, especially in Hong Kong, have been targeted by a software supply chain attack by the newly discovered Carderbee hacking operation that commenced in April, CyberScoop reports.
Unknown threat actors who appear to be aligned with China’s interests carried out “one of the most audacious” attacks Black Lotus Labs researchers have ever seen.
Syria-based developer and malware-as-a-service operator "EVLF DEV" has been identified to be behind the CraxsRAT and CypherRAT remote access trojans, according to SecurityWeek.
New reconnaissance attacks against a U.S. Department of Defense server involved in defense contracts and Taiwan-based semiconductor and chemical firms have been deployed by threat operation behind the HiatusRAT malware, which has reemerged months after a cyberespionage campaign against European and Latin American organizations that involved the exploitation of business-grade routers, The Hacker News reports.