Messaging Apps Tapped as Platform for Cybercriminal Activity
Built-in Telegram and Discord services are fertile ground for storing stolen data, hosting malware and using bots for nefarious purposes.
Government
Emerging H0lyGh0st Ransomware Tied to North Korea
Microsoft has linked a threat that emerged in June 2021 and targets small-to-mid-sized businesses to state-sponsored actors tracked as DEV-0530.
Journalists Emerge as Favored Attack Target for APTs
Since 2021, various state-aligned threat groups have turned up their targeting of journalists to siphon data and credentials and also track them.
State-sponsored actors are deploying the unique malware–which targets specific files and leaves no ransomware note–in ongoing attacks.
Iran’s steel manufacturing industry is victim to ongoing cyberattacks that previously impacted the country’s rail system.
Cyber collective Killnet claims it won’t let up until the Baltic country opens trade routes to and from the Russian exclave of Kaliningrad.
The APT is pairing a known Microsoft flaw with a malicious document to load malware that nabs credentials from Chrome, Firefox and Edge browsers.
The threat actor targets institutions and companies in Europe and Asia.
Evidence suggests that a just-discovered APT has been active since 2013.
Analysts have uncovered an Iran-linked APT sending malicious emails to top Israeli government officials.
