Security Affairs

OCTOBER 18, 2020

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation. Researchers from FireEye’s Mandiant observed FIN11 hackers using spear-phishing messages distributing a malware downloader dubbed FRIENDSPEAK.

Ransomware 130

Ransomware Malware Telecommunications Advertising 130

Security Affairs

DECEMBER 6, 2021

The NOBELIUM APT ( APT29 , Cozy Bear , and The Dukes) is the threat actor that conducted supply chain attack against SolarWinds, which involved multiple families of implants, including the SUNBURST backdoor , TEARDROP malware , GoldMax malware , Sibot , and GoldFinder backdoors.

Phishing 94

Phishing Telecommunications Government Accountability 94

The Last Watchdog

APRIL 13, 2022

The Russian government, military, and intelligence service may wish to achieve some operational effect, for example, disrupting the power grid or interfering with telecommunications infrastructure, which may be part of a larger war plan. Educate your employees on threats and risks such as phishing and malware.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

Security Affairs

OCTOBER 25, 2021

The NOBELIUM APT ( APT29 , Cozy Bear , and The Dukes) is the threat actor that conducted supply chain attack against SolarWinds, which involved multiple families of implants, including the SUNBURST backdoor , TEARDROP malware , GoldMax malware , Sibot , and GoldFinder backdoors.

Telecommunications 108

Telecommunications Technology Hacking Malware 108

Security Affairs

JULY 6, 2021

According to Group-IB’s Threat Intelligence team, the suspect, dubbed Dr HeX by Group-IB based on one of the nicknames that he used, has been active since at least 2009 and is responsible for a number of cybercrimes, including phishing, defacing, malware development, fraud, and carding that resulted in thousands of unsuspecting victims.

Cybercrime 96

Cybercrime Phishing Banking Telecommunications 96

Security Affairs

DECEMBER 7, 2023

Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS).

Government 109

Government Telecommunications Accountability Phishing 109

Security Affairs

AUGUST 27, 2022

“The attack may include disruptions to the public utility, transportation (including border crossings and airport), and telecommunication sectors.” ” The National Security Agency issued a waring to organizations operating critical infrastructure. Embassy in the capital Podgorica.

Cyber Attacks 82

Cyber Attacks Government Telecommunications Malware 82

Security Affairs

MAY 21, 2020

The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. The APT group targets telecommunication and travel industries in the Middle East to gather intelligence on Iran’s geopolitical interests. ” continues the report.

Government 114

Government Social Engineering Telecommunications Hacking 114

Krebs on Security

DECEMBER 12, 2018

Is it fair to judge an organization’s information security posture simply by looking at its Internet-facing assets for weaknesses commonly sought after and exploited by attackers, such as outdated software or accidentally exposed data and devices? It took Equifax two weeks to fix that expired cert. ARE YOU EXPERIANSED?

Cyber Risk 200

Cyber Risk Energy and Utilities Risk Marketing 200

Security Affairs

JULY 13, 2019

“ Malware then guesses routers’ passwords , which new research from Avast shows are often weak. In some cases the router is reconfigured to use rogue DNS servers, which redirect victims to phishing pages that closely look like real online banking sites. ” reads a blog post published by Avast.

DNS 73

DNS Passwords Advertising Banking 73

Security Affairs

SEPTEMBER 1, 2022

The attack may include disruptions to the public utility, transportation (including border crossings and airport), and telecommunication sectors.”. The National Security Agency issued a warning to organizations operating critical infrastructure. Embassy in the capital Podgorica.

Government 76

Government Cyber Attacks Telecommunications Malware 76

Security Boulevard

MARCH 24, 2022

On March 15th, research firm ESET reported a new data-wiping malware targeting Ukraine named CaddyWiper. [ 1 ] The malware “destroys user data and partitions information from attached drives”. The German Federal Office for Information Security (BSI) issued a warning about the use of Kaspersky products. [

Ransomware 57

Ransomware Malware Government Antivirus 57

Security Affairs

AUGUST 7, 2019

The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. Indeed during the group_a, the main observed delivery techniques where about Phishing (rif.T1193) and Valid Accounts (rif.T1078).

Computers and Electronics 80

Computers and Electronics Penetration Testing DNS Phishing 80

Spinone

DECEMBER 26, 2018

Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016. Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016.

Security Awareness 40

Security Awareness Risk Cyber threats Cyber Risk 40

Security Affairs

MARCH 25, 2024

Proofpoint researchers observed the Iran-linked APT group MuddyWater (aka SeedWorm , TEMP.Zagros , TA450, and Static Kitten ) was behind a new phishing campaign in March 2024 that attempted to drop a legitimate Remote Monitoring and Management (RMM) solution called Atera on the target systems.

Phishing 109

Phishing Social Engineering Telecommunications Accountability 109

Security Affairs

NOVEMBER 3, 2023

Iran-linked cyberespionage group MuddyWater is targeting Israeli entities in a new spear-phishing campaign. Iran-linked APT group MuddyWater (aka SeedWorm , TEMP.Zagros , and Static Kitten ) is targeting Israeli entities in a new spear-phishing campaign, Deep Instinct’s Threat Research team reported.

Telecommunications 106

Telecommunications Phishing Government Hacking 106

Security Affairs

DECEMBER 15, 2021

Researchers uncovered a new Seedworm campaign targeting telecommunication and IT service providers in the Middle East and Asia. The threat actors don’t use custom malware and instead rely on legitimate tools, publicly available malware, and living-off-the-land tactics. [REDACTED][ ]com/ews.

Telecommunications 93

Telecommunications Passwords Phishing Hacking 93

Security Affairs

NOVEMBER 29, 2019

The group’s distinctive features are the high quality of their phishing attacks and the use of legitimate services, which makes it very difficult to detect its malicious activity in companies’ infrastructures. The most common objective of such attacks is cyberespionage and disruption of major telecommunications companies’ work.

Banking 84

Banking Telecommunications Marketing Internet 84

SecureList

MAY 12, 2021

Well-known malware families are involved in the biggest and most wide-reaching campaigns. Offers with support (admittedly, more widespread in the financial malware market), usually offer regular updates and make decisions about malware updates. According to our research , this malware affected almost 20 business sectors.

Ransomware 132

Ransomware Encryption Malware Cybercrime 132

eSecurity Planet

NOVEMBER 5, 2021

CURA is a web-based software that manages enterprise risks, project risks, incidents, business continuity, compliance, and information security. CURA is a suite of risk management software tools tailored to specific industries based on their business needs, including finance, healthcare, insurance, telecommunications, and more.

Software 119

Software Risk Government Architecture 119

Security Affairs

MAY 5, 2024

Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS).

Government 108

Government Accountability Cyber Attacks Telecommunications 108

Security Affairs

NOVEMBER 25, 2020

Group-IB’s report Hi-Tech Crime Trends 2020/2021 examines various aspects of cybercrime industry operations and predicts changes to the threat landscape for various sectors, namely the financial industry, telecommunications, retail, manufacturing, and the energy sector. Phishing grows by 118%. billion, while textual data – to $361.7

Banking 130

Banking Ransomware Phishing Marketing 130

Security Affairs

JUNE 18, 2021

Most of the victims of the threat actor were located in Israel and Palestine, they belong to multiple industries including governments, telecommunications, finance, military, universities, and technology. Proofpoint researchers assess LastConn is very actively developed and maintained malware.

Government 87

Government Telecommunications Malware Passwords 87

Security Affairs

OCTOBER 9, 2023

The Storm-1133 activity was observed in early 2023 and is targeting Israeli private-sector energy, defense, and telecommunications organizations. ” Threat actors behind Storm-1133 sent out spear-phishing messages via email and social media, Microsoft also observed the use of new techniques to evade detection. .

DDOS 120

DDOS Hacking Banking Telecommunications 120