…but a North Korean threat actor group had and they hijacked the update process to inject malware into the “protected” systems. Researchers at Avast believe the group is the North Korean APT group Kimsuki. The malware installs GuptiMiner – a crypto-miner – and disables several other security precautions if they …
You have protection – hackers have evasion
In a forth coming article about our new Security Operations Centre (SOC-as-a-Service), I discuss the different between passive protection – which you must have – and reactive, continuous 24/7 Cyber Security Monitoring. This article from Bleeping Computer illustrates how threat actors carefully take apart the protection you are using to …
Continue reading “You have protection – hackers have evasion”
‘Metador’ a new cyber security threat
Bleeping Computers is reporting on the discovery of a new cyber-criminal gang, Metador, who have apparently been infiltrating ISPs, telecos and universities for the last two years: New hacking group ‘Metador’ lurking in ISP networks for months (bleepingcomputer.com) The group have been involved in some complex operations using Windows and …
Maybe this attack may not target my readers, but you never know?
The is active attack running on the internet at the moment targeting the CEOs and CFOs of some of the biggest companies around. These threat actors are not looking for targets of opportunity, for the work they put in they only want targets that can return millions of Pounds or …
Continue reading “Maybe this attack may not target my readers, but you never know?”
Belgium the target of Chinese cyber attacks
The Belgium government has issued documents to the Chinese government urging them to take action against Chinese hacking groups attacking Belgium public services and military. China: Declaration by the Minister for Foreign Affairs on behalf of the Belgian Government urging Chinese authorities to take action against malicious cyber activities undertaken …
Continue reading “Belgium the target of Chinese cyber attacks”
US federal government agency compromised with a sophisticated attack
The United States Commission on International Religious Freedom (USCIRF) is understood to have been suffering a advanced persistent threat (APT) compromising the internal networks. US federal agency compromised in suspected APT attack – The Record by Recorded Future This agency has a role in shaping US government policy when it …
Continue reading “US federal government agency compromised with a sophisticated attack”
