Government and Malware - Cyber Security Informer

Beware: Malicious Android Malware Disguised as Government Alerts.

Quick Heal Antivirus

MARCH 21, 2024

Lately, we’ve spotted sneaky malware on Android. The post Beware: Malicious Android Malware Disguised as Government Alerts. In our high-tech world, sneaky cyber threats can pop up anywhere. appeared first on Quick Heal Blog.

Government

Government Malware Cyber threats Social Engineering

LazyStealer Malware Targets Governments with Simple But Effective Strategy

Penetration Testing

APRIL 9, 2024

A new report from Positive Technologies Expert Security Center (PT ESC) warns that a cybercriminal group known as “Lazy Koala” has successfully compromised government organizations across several countries.

Government

Government Penetration Testing Malware Technology

US Government Exposes North Korean Malware

Schneier on Security

MAY 14, 2020

US Cyber Command has uploaded North Korean malware samples to the VirusTotal aggregation repository, adding to the malware samples it uploaded in February. It's interesting to see the US government take a more aggressive stance on foreign malware.

Government

Government Malware Antivirus Cryptocurrency

US Government defense data stolen by Malware

CyberSecurity Insiders

OCTOBER 5, 2022

Information is out that an advanced persistent threat group has reportedly stolen data from the US Defense servers with the help of CovalentStealer Malware. But the US Government suspects the involvement of Chinese or Russian intelligence in this aspect. Presently, the origin of the threat actors is yet to be revealed.

Government

Government Malware Adware Spyware

Mysterious Macintosh Malware

Schneier on Security

MARCH 2, 2021

This is weird : Once an hour, infected Macs check a control server to see if there are any new commands the malware should run or binaries to execute. So far, however, researchers have yet to observe delivery of any payload on any of the infected 30,000 machines, leaving the malware’s ultimate goal unknown. Another article.

Malware

Malware Government

Operation RusticWeb: Rust-Based Malware Targets Indian Government Entities

The Hacker News

DECEMBER 22, 2023

Indian government entities and the defense sector have been targeted by a phishing campaign that's engineered to drop Rust-based malware for intelligence gathering. The activity, first detected in October 2023, has been codenamed Operation RusticWeb by enterprise security firm SEQRITE.

Government

Government Malware Engineering Encryption

Raspberry Robin Malware Targets Telecom, Governments

Trend Micro

DECEMBER 19, 2022

We found samples of the Raspberry Robin malware spreading in telecommunications and government office systems beginning September. The main payload itself is packed with more than 10 layers for obfuscation and is capable of delivering a fake payload once it detects sandboxing and security analytics tools.

Government

Government Malware Telecommunications

Details on Uzbekistan Government Malware: SandCat

Schneier on Security

OCTOBER 11, 2019

Kaspersky has uncovered an Uzbeki hacking operation, mostly due to incompetence on the part of the government hackers.

Government

Government Malware Antivirus Hacking

KamikakaBot Malware Used to Attack Southeast Asian Government Agencies

Heimadal Security

MARCH 14, 2023

The Dark Pink APT has been linked to a new wave of attacks using the KamiKakaBot malware against government and military entities in Southeast Asian countries.

Government

Government Malware Cybersecurity

Malware-Infested Smart Card Reader

Schneier on Security

MAY 26, 2022

Brian Krebs has an interesting story of a smart ID card reader with a malware-infested Windows driver, and US government employees who inadvertently buy and use them.

Malware

Malware Government Accountability

Sophisticated DownEx Malware Campaign Targeting Central Asian Governments

The Hacker News

MAY 10, 2023

Government organizations in Central Asia are the target of a sophisticated espionage campaign that leverages a previously undocumented strain of malware dubbed DownEx. Bitdefender, in a report shared with The Hacker News, said the activity remains active, with evidence likely pointing to the involvement of Russia-based threat actors.

Government

Government Malware Cybersecurity

'Stealth Soldier' Attacks Target Libyan Government Entities With Surveillance Malware

Dark Reading

JUNE 12, 2023

Surveillance malware targets Libyan government entities, with possible links to a 2019 Egypt attack campaign.

Surveillance

Surveillance Government Malware

APT Group Dark Pink Doubles Down on Government and Military Targets with Custom Malware

Heimadal Security

JANUARY 11, 2023

Multiple government agencies and military bodies in the APAC region have been targeted by what appears to be a new advanced threat actor that uses custom malware. The post APT Group Dark Pink Doubles Down on Government and Military Targets with Custom Malware appeared first on Heimdal Security Blog.

Government

Government Malware Cybersecurity

“DuneQuixote” Campaign Targets Middle East with Evasive “CR4T” Malware

Penetration Testing

APRIL 18, 2024

Kaspersky Labs researchers have revealed a new, targeted malware campaign dubbed “DuneQuixote” with a focus on government entities within the Middle East.

Malware

Malware Penetration Testing Government

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. exe, and rundll32.exe.

Government

Government Malware Telecommunications Cybercrime

CISA Warns Government Agencies of Increasing Emotet Attacks

Adam Levin

OCTOBER 8, 2020

The United States Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert warning of an increase in Emotet malware-based phishing attacks on state and local agencies. Since August, CISA and MS-ISAC have seen a significant increase in malicious cyber actors targeting state and local governments with Emotet phishing emails.

Government

Government Antivirus Phishing Banking

Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign

The Hacker News

MAY 9, 2024

Polish government institutions have been targeted as part of a large-scale malware campaign orchestrated by a Russia-linked nation-state actor called APT28.

Malware

Malware Government

US Government warns of new malware attacks on ICS/SCADA systems

The State of Security

APRIL 14, 2022

Agencies of the US Government have issued a joint warning that hackers have revealed their capability to gain full system access to industrial control systems that might help enemy states sabotage critical infrastructure. The post US Government warns of new malware attacks on ICS/SCADA systems appeared first on The State of Security.

Government

Government Malware Cybersecurity

Industrial Control System Malware Discovered

Schneier on Security

APRIL 14, 2022

The Department of Energy, CISA, the FBI, and the NSA jointly issued an advisory describing a sophisticated piece of malware called Pipedream that’s designed to attack a wide range of industrial control systems. This is clearly from a government, but no attribution is given. It seems not to have been used yet. More information.

Malware

Malware Government

APT34 Deploys Phishing Attack With New Malware

Trend Micro

SEPTEMBER 28, 2023

We observed and tracked the advanced persistent threat (APT) APT34 group with a new malware variant accompanying a phishing attack comparatively similar to the SideTwist backdoor malware. Following the campaign, the group abused a fake license registration form of an African government agency to target a victim in Saudi Arabia.

Phishing

Phishing Malware Government Cyber threats

Pakistani Hackers Use Linux Malware Poseidon to Target Indian Government Agencies

The Hacker News

APRIL 19, 2023

The Pakistan-based advanced persistent threat (APT) actor known as Transparent Tribe used a two-factor authentication (2FA) tool used by Indian government agencies as a ruse to deliver a new Linux backdoor called Poseidon.

Government

Government Malware Authentication

When Your Smart ID Card Reader Comes With Malware

Krebs on Security

MAY 17, 2022

government employees and contractors have been issued a secure smart ID card that enables physical access to buildings and controlled spaces, and provides access to government computer networks and systems at the cardholder’s appropriate security level. government smart cards. government smart cards.

Malware

Malware Government Internet Internet

OfflRouter Malware Ukraine: Govt Network Breach Since 2015

Security Boulevard

APRIL 29, 2024

As per recent media reports, certain government networks in Ukraine have been infected with the Offlrouter malware since 2015. The Offlrouter malware Ukraine has managed to escape detection for nearly a decade now. However, VBA macro malware has recently come under the radar of Cisco Talos.

Malware

Malware Media Government Cybersecurity

Researchers Perform An Analysis on Chinese Malware Used Against Russian Government

Hacker Combat

AUGUST 6, 2021

The disclosure cantered on the Mail-O malware when the attackers attempted to access Russian federal officials’ emails. Then, SentinelOne thought it was related to a malware variant called manager or PhantomNet created by TA428. Group-IB performed an in-depth analysis of the malware families used by the attackers.

Government

Government Malware Energy and Utilities Cyber Attacks

OfflRouter Malware Evades Detection in Ukraine for Almost a Decade

The Hacker News

APRIL 18, 2024

Select Ukrainian government networks have remained infected with a malware called OfflRouter since 2015. Cisco Talos said its findings are based on an analysis of over 100 confidential documents that were infected with the VBA macro virus and uploaded to the VirusTotal malware scanning platform.

Malware

Malware Government

IcedID Malware Is Being Used in a New Hacking Campaign Targeting the Ukrainian Government

Heimadal Security

APRIL 18, 2022

A warning about a new wave of social engineering cyberattacks that distribute the IcedID malware and employ Zimbra exploits for sensitive data theft purposes has been recently issued by the Computer Emergency Response Team of Ukraine (CERT-UA).

Government

Government Social Engineering Malware Hacking

Ukraine government firms now jostling with a new wiper malware variant

CyberSecurity Insiders

MARCH 15, 2022

Cybersecurity researchers from ESET have discovered a new CaddyWiper malware on servers of some organizations belonging to the Ukrainian government. While the former wants to stop the war, the latter wants Ukrainian soldiers to surrender to the government of the Russian federation. .

Government

Government Malware Banking Software

Russian Gamaredon Hackers Target Ukrainian Government Using Info-Stealing Malware

The Hacker News

SEPTEMBER 16, 2022

An ongoing espionage campaign operated by the Russia-linked Gamaredon group is targeting employees of Ukrainian government, defense, and law enforcement agencies with a piece of custom-made information stealing malware.

Government

Government Malware Phishing

PureCrypter Malware Targets Government Entities in Asia-Pacific and North America

The Hacker News

FEBRUARY 27, 2023

Government entities in Asia-Pacific and North America are being targeted by an unknown threat actor with an off-the-shelf malware downloader known as PureCrypter to deliver an array of information stealers and ransomware.

Government

Government Malware Ransomware

A New Destructive Malware Targeting Ukrainian Government and Business Entities

The Hacker News

JANUARY 16, 2022

Cybersecurity teams from Microsoft on Saturday disclosed they identified evidence of a new destructive malware operation targeting government, non-profit, and information technology entities in Ukraine amid brewing geopolitical tensions between the country and Russia.

Government

Government Malware Technology Ransomware

ToddyCat: Unveiling the Stealthy APT Group Targeting Asia-Pacific Governments

Penetration Testing

APRIL 22, 2024

The group... The post ToddyCat: Unveiling the Stealthy APT Group Targeting Asia-Pacific Governments appeared first on Penetration Testing.

Government

Government Penetration Testing Malware

From SideCopy to Transparent Tribe: Pakistan APTs Hit Indian Government With RATs

Penetration Testing

APRIL 24, 2024

A new report by Seqrite Labs reveals an alarming escalation in cyberattacks against Indian government entities by Pakistani Advanced Persistent Threats (APTs).

Government

Government Penetration Testing Malware

Indian government bans personal computer connections to office networks

CyberSecurity Insiders

JANUARY 2, 2023

Indian government agencies are urging their employees not to connect their personal laptops and smart phones to office networks. They also issued a ban on using the office devices to download torrents and pirated movies, as it can invite cyber troubles such as malware into computer networks.

Government

Government Malware Technology Ransomware

China-linked Daxin Malware Targeted Multiple Governments in Espionage Attacks

The Hacker News

MARCH 1, 2022

A previously undocumented espionage tool has been deployed against selected governments and other critical infrastructure targets as part of a long-running espionage campaign orchestrated by China-linked threat actors since at least 2013.

Government

Government Malware Technology

Earth Krahang APT breached tens of government organizations worldwide

Security Affairs

MARCH 19, 2024

The campaign seems active since at least early 2022 and focuses primarily on government organizations. The group often exploited access to government infrastructure to target other government entities. “Earth Krahang abuses the trust between governments to conduct their attacks.

Government

Government Phishing Accountability VPN

QiAnXin Uncovers New Kimsuky Malware Campaign

Penetration Testing

MARCH 10, 2024

Security researchers at QiAnXin Threat Intelligence Center have uncovered a sophisticated malware campaign waged by the Kimsuky APT group.

Malware

Malware Penetration Testing Education Government

Hackers Hit Indian Defense, Energy Sectors with Malware Posing as Air Force Invite

The Hacker News

MARCH 27, 2024

Indian government entities and energy companies have been targeted by unknown threat actors with an aim to deliver a modified version of an open-source information stealer malware called HackBrowserData and exfiltrate sensitive information in some cases by using Slack as command-and-control (C2).

Malware

Malware Phishing Government

China-Linked Budworm Targeting Middle Eastern Telco and Asian Government Agencies

The Hacker News

SEPTEMBER 28, 2023

Government and telecom entities have been subjected to a new wave of attacks by a China-linked threat actor tracked as Budworm using an updated malware toolset.

Government

Government Telecommunications Malware

SYS01 stealer targets critical government infrastructure

Security Affairs

MARCH 7, 2023

Researchers discovered a new info stealer dubbed SYS01 stealer targeting critical government infrastructure and manufacturing firms. The last stage malware is the PHP-based SYS01stealer malware which is able to steal browser cookies and abuse authenticated Facebook sessions to steal information from the victim’s Facebook account.

Government

Government Manufacturing Social Engineering Malware

Researchers Uncover Ongoing Attacks Targeting Asian Governments and Telecom Giants

The Hacker News

OCTOBER 11, 2023

High-profile government and telecom entities in Asia have been targeted as part of an ongoing campaign since 2021 that's designed to deploy basic backdoors and loaders for delivering next-stage malware. Cybersecurity company Check Point is tracking the activity under the name Stayin' Alive.

Government

Government Malware Cybersecurity

Compromising a government network is so simple, an out-of-the-box, dark web RAT can do it

Tech Republic Security

SEPTEMBER 27, 2021

Commercially-available malware, with minimal modification, is behind attacks against the Indian government, says Cisco's Talos security research group.

Government

Government Malware

NetSupport RAT Infections on the Rise - Targeting Government and Business Sectors

The Hacker News

NOVEMBER 20, 2023

Threat actors are targeting the education, government and business services sectors with a remote access trojan called NetSupport RAT.

Government

Government Business Services Education Phishing

Fujitsu suffered a malware attack and probably a data breach

Security Affairs

MARCH 18, 2024

Japanese technology giant Fujitsu on Friday announced it had suffered a malware attack, threat actors may have stolen personal and customer information. The company revealed that multiple work computers were infected with malware, in response to the compromise the security staff disconnected impacted systems from the network. .

Data breaches

Data breaches Malware Technology Government

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. exe, and rundll32.exe.

Government

Government Malware Telecommunications Cybercrime

Beware: Malicious Android Malware Disguised as Government Alerts.

LazyStealer Malware Targets Governments with Simple But Effective Strategy

Trending Sources

US Government Exposes North Korean Malware

US Government defense data stolen by Malware

Mysterious Macintosh Malware

Operation RusticWeb: Rust-Based Malware Targets Indian Government Entities

Raspberry Robin Malware Targets Telecom, Governments

Details on Uzbekistan Government Malware: SandCat

KamikakaBot Malware Used to Attack Southeast Asian Government Agencies

Malware-Infested Smart Card Reader

Sophisticated DownEx Malware Campaign Targeting Central Asian Governments

'Stealth Soldier' Attacks Target Libyan Government Entities With Surveillance Malware

APT Group Dark Pink Doubles Down on Government and Military Targets with Custom Malware

“DuneQuixote” Campaign Targets Middle East with Evasive “CR4T” Malware

Raspberry Robin malware used in attacks against Telecom and Governments

CISA Warns Government Agencies of Increasing Emotet Attacks

Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign

US Government warns of new malware attacks on ICS/SCADA systems

Industrial Control System Malware Discovered

APT34 Deploys Phishing Attack With New Malware

Pakistani Hackers Use Linux Malware Poseidon to Target Indian Government Agencies

When Your Smart ID Card Reader Comes With Malware

OfflRouter Malware Ukraine: Govt Network Breach Since 2015

Researchers Perform An Analysis on Chinese Malware Used Against Russian Government

OfflRouter Malware Evades Detection in Ukraine for Almost a Decade

IcedID Malware Is Being Used in a New Hacking Campaign Targeting the Ukrainian Government

Ukraine government firms now jostling with a new wiper malware variant

Russian Gamaredon Hackers Target Ukrainian Government Using Info-Stealing Malware

PureCrypter Malware Targets Government Entities in Asia-Pacific and North America

A New Destructive Malware Targeting Ukrainian Government and Business Entities

ToddyCat: Unveiling the Stealthy APT Group Targeting Asia-Pacific Governments

From SideCopy to Transparent Tribe: Pakistan APTs Hit Indian Government With RATs

Indian government bans personal computer connections to office networks

China-linked Daxin Malware Targeted Multiple Governments in Espionage Attacks

Earth Krahang APT breached tens of government organizations worldwide

QiAnXin Uncovers New Kimsuky Malware Campaign

Hackers Hit Indian Defense, Energy Sectors with Malware Posing as Air Force Invite

China-Linked Budworm Targeting Middle Eastern Telco and Asian Government Agencies

SYS01 stealer targets critical government infrastructure

Researchers Uncover Ongoing Attacks Targeting Asian Governments and Telecom Giants

Compromising a government network is so simple, an out-of-the-box, dark web RAT can do it

NetSupport RAT Infections on the Rise - Targeting Government and Business Sectors

Fujitsu suffered a malware attack and probably a data breach

Raspberry Robin malware used in attacks against Telecom and Governments

Stay Connected