Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-09-28 13:47:10 |
APT28 relies on PowerPoint Mouseover to deliver Graphite malware (lien direct) |
>The Russia-linked APT28 group is using mouse movement in decoy Microsoft PowerPoint documents to distribute malware. The Russia-linked APT28 employed a technique relying on mouse movement in decoy Microsoft PowerPoint documents to deploy malware, researchers from Cluster25 reported. Cluster25 researchers were analyzing a lure PowerPoint document used to deliver a variant of Graphite malware, which is known to be used […]
|
Malware
|
APT 28
|
|
|
2022-01-27 20:30:53 |
North Korea-linked Lazarus APT used Windows Update client and GitHub in recent attacks (lien direct) |
North Korea-linked Lazarus APT group uses Windows Update client to deliver malware on Windows systems. North Korea-linked Lazarus APT started using Windows Update to execute the malicious payload and GitHub as a command and control server in recent attacks, Malwarebytes researchers reported. The activity of the Lazarus APT group surged in 2014 and 2015, its members used […]
|
Malware
|
APT 38
APT 28
|
|
|
2021-10-27 09:03:08 |
North Korea-linked Lazarus APT targets the IT supply chain (lien direct) |
North Korea-linked Lazarus APT group is extending its operations and started targeting the IT supply chain on new targets. North Korea-linked Lazarus APT group is now targeting also IT supply chain, researchers from Kaspersky Lab warns. The activity of the Lazarus APT group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. […]
|
Malware
|
APT 38
APT 28
|
|
|
2020-12-25 18:45:15 |
(Déjà vu) North Korea-linked Lazarus APT targets the COVID-19 research (lien direct) |
The North Korea-linked Lazarus APT group has recently launched cyberattacks against at least two organizations involved in COVID-19 research. The North Korea-linked APT group Lazarus has recently launched cyberattacks against two entities involved in COVID-19 research. The activity of the Lazarus APT group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. […]
|
Malware
|
APT 38
APT 28
|
|
|
2020-12-10 12:14:06 |
Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware (lien direct) |
Russia-link cyberespionage APT28 leverages COVID-19 as phishing lures to deliver the Go version of their Zebrocy (or Zekapab) malware. Russia-linked APT28 is leveraging COVID-19 as phishing lures in a new wave of attacks aimed at distributing the Go version of their Zebrocy (or Zekapab) malware. The APT28 group (aka Fancy Bear, Pawn Storm, Sofacy Group, Sednit, and STRONTIUM) has been active since at least 2007 and it has […]
|
Malware
|
APT 28
|
|
|
2020-08-13 18:07:18 |
FBI and NSA joint report details APT28\'s Linux malware Drovorub (lien direct) |
The FBI and NSA issue joint alert related to new Linux malware dubbed Drovorub that has been used by the Russia-linked APT28 group. The FBI and NSA have published a joint security alert containing technical details about a new piece of Linux malware, tracked as Drovorub, allegedly employed by Russia-linked the APT28 group. The name […]
|
Malware
|
APT 28
|
|