Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2022-06-24 12:37:15 |
Google details commercial spyware that targets both Android and iOS devices (lien direct) |
Hermit highlights a wider issue concerning our privacy and freedom. |
Cloud
|
APT 37
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2022-03-29 12:00:00 |
Transparent Tribe APT returns to strike India\'s government and military (lien direct) |
The development of custom malware indicates the group is trying to "compromise even more victims." |
Malware
|
APT 36
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2022-02-09 09:31:42 |
Lazarus hackers target defense industry with fake Lockheed Martin job offers (lien direct) |
The APT has previously masqueraded as Northrop Grumman and BAE Systems. |
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2022-01-13 08:00:02 |
Fingers point to Lazarus, Cobalt, FIN7 as key hacking groups attacking finance industry (lien direct) |
A deep dive into threats against this sector reveals the top threats organizations should keep in mind. |
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2021-04-20 10:35:48 |
Lazarus hacking group now hides payloads in BMP image files (lien direct) |
South Korea continues to be a favored target. |
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2021-04-08 09:36:31 |
Vyveva: Lazarus hacking group\'s latest weapon strikes South African freight (lien direct) |
The backdoor is being used to spy on the activities of freight companies. |
|
APT 38
APT 28
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2021-02-17 17:33:00 |
(Déjà vu) US charges two more members of the \'Lazarus\' North Korean hacking group (lien direct) |
The US DOJ described the North Korean hackers as "the world's leading bank robbers" and "a criminal syndicate with a flag." |
Guideline
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-12-11 01:56:06 |
Facebook doxes APT32, links Vietnam\'s primary hacking group to local IT firm (lien direct) |
Facebook suspends accounts linked to APT32, says the group used its platform to spread malware. |
|
APT 32
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-11-16 10:30:03 |
Lazarus malware strikes South Korean supply chains (lien direct) |
The malware is passing security checks through the abuse of stolen software certificates. |
Malware
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-11-13 14:00:00 |
Microsoft says three APTs have targeted seven COVID-19 vaccine makers (lien direct) |
The three state-sponsored hacker groups (APTs) are Russia's Strontium (Fancy Bear) and North Korea's Zinc (Lazarus Group) and Cerium. |
Medical
|
APT 38
APT 28
APT 43
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-09-17 23:41:21 |
US sanctions Iranian government front company hiding major hacking operations (lien direct) |
US says the Iranian government used the "Rana Intelligence Computing Company" as a front for the APT39 hacking group. |
Prediction
|
APT 39
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-08-25 09:00:00 |
Lazarus group strikes cryptocurrency firm through LinkedIn job adverts (lien direct) |
A system administrator proved to be the weak link, opening the door for Lazarus to attack. |
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-08-20 12:03:21 |
Transparent Tribe APT targets government, military by infecting USB devices (lien direct) |
The hacking group is focused on campaigns in India and Afghanistan. |
|
APT 36
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-08-18 04:35:04 |
US Army report says many North Korean hackers operate from abroad (lien direct) |
US Army says many North Korean hackers are actually located outside the hermit kingdom, in countries like Belarus, China, India, Malaysia, and Russia. |
Cloud
|
APT 37
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-08-04 16:20:12 |
Iranian hacker group becomes first known APT to weaponize DNS-over-HTTPS (DoH) (lien direct) |
Kaspersky says Oilrig (APT34) group has been using DoH to silently exfiltrate data from hacked networks. |
|
APT 34
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-07-15 13:07:00 |
(Déjà vu) Report: CIA most likely behind APT34 and FSB hacks and data dumps (lien direct) |
In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies. |
|
APT 34
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-07-15 13:07:00 |
Report: CIA behind APT34 and FSB hacks and data dumps (lien direct) |
In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies. |
|
APT 34
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2020-05-08 20:31:00 |
Digital Ocean says it exposed customer data after it left an internal document online (lien direct) |
Digital Ocean says no customer servers were accessed following this security lapse. |
|
APT 32
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-12-30 21:53:41 |
Microsoft takes down 50 domains operated by North Korean hackers (lien direct) |
Microsoft takes control of 50 domains operated by Thallium (APT37), a North Korean cyber-espionage group. |
Cloud
|
APT 37
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-12-17 12:12:46 |
Lazarus pivots to Linux attacks through Dacls Trojan (lien direct) |
The Trojan is able to infect both Windows and Linux machines. |
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-12-06 20:39:56 |
BMW and Hyundai hacked by Vietnamese hackers, report claims (lien direct) |
Hacks linked to Ocean Lotus (APT32), a group believed to operate with orders from the Vietnamese government. |
|
APT 32
|
★★★★
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-11-14 07:00:08 |
Iranian hacking group built its own VPN network (lien direct) |
Security researchers identify APT33's private network of 21 VPN nodes. |
|
APT33
APT 33
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-09-13 16:47:00 |
US Treasury sanctions three North Korean hacking groups (lien direct) |
US wants to seize financial assets associated with the Lazarus Group, Bluenoroff, and Andarial. |
Medical
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-07-24 18:24:00 |
APT-doxing group exposes APT17 as Jinan bureau of China\'s Security Ministry (lien direct) |
Intrusion Truth's previous two exposes -- for APT3 and APT10 -- resulted in DOJ charges. Will this one as well? |
|
APT 17
APT 10
APT 3
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-06-20 10:00:00 |
Russian APT hacked Iranian APT\'s infrastructure back in 2017 (lien direct) |
Turla APT hacked Iran's APT34 group and used its C&C servers to re-infect APT34 victims with its own malware. |
|
APT 34
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-05-10 10:41:04 |
North Korea debuts new Electricfish malware in Hidden Cobra campaigns (lien direct) |
The tool is used to forge covert pathways out of infected Windows PCs. |
Malware
Tool
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-04-17 23:24:00 |
Source code of Iranian cyber-espionage tools leaked on Telegram (lien direct) |
APT34 hacking tools and victim data leaked on a secretive Telegram channel since last month. |
|
APT 34
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-03-27 18:04:01 |
Microsoft takes control of 99 domains operated by Iranian state hackers (lien direct) |
Microsoft takes control of 99 domains operated by APT35/Phosphorus cyber-espionage group. |
Conference
|
APT 35
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-03-27 10:52:01 |
North Korean hackers continue attacks on cryptocurrency businesses (lien direct) |
Lazarus Group hackers seamlessly integrate Mac malware into their normal attack routine. |
Malware
Medical
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-03-21 12:17:02 |
OceanLotus adopts public exploit code to abuse Microsoft Office software (lien direct) |
APT32 is using a public exploit to abuse Office and compromise targeted systems. |
|
APT 32
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2019-03-04 11:43:02 |
Researchers granted server by gov officials link Sharpshooter attacks to North Korea (lien direct) |
Analysis of the server revealed links to North Korea's Lazarus Group. |
Medical
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-12-20 05:16:00 |
Shamoon data-wiping malware believed to be the work of Iranian hackers (lien direct) |
Researchers say the Iranian hacker group APT33 is responsible for recent attacks in the Middle East and Europe. |
Malware
|
APT33
APT 33
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-10-18 04:01:00 |
Oceansalt cyberattack wave linked to defunct Chinese APT Comment Crew (lien direct) |
The source code of malware from the ancient Chinese military-affiliated group appears to have changed hands. |
Malware
|
APT 32
APT 1
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-10-03 15:01:00 |
North Korea\'s APT38 hacking group behind bank heists of over $100 million (lien direct) |
New FireEye report provides insight into North Korea's financially-motivated hacking operations. |
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-06 21:43:04 |
How US authorities tracked down the North Korean hacker behind WannaCry (lien direct) |
US authorities put together four years worth of malware samples, domain names, email and social media accounts to track down one of the Lazarus Group hackers. |
Malware
Medical
|
Wannacry
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-23 08:00:00 |
AppleJeus: macOS users targeted in new Lazarus attacks (lien direct) |
The campaign includes the distribution of Apple macOS malware for the first time. |
Malware
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-06-13 11:57:00 |
Lazarus Group used ActiveX zero-day vulnerability to attack South Korean security think tank (lien direct) |
The South Korean agency focuses on national security issues and is believed to have been attacked by North Korean hackers. |
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-04-05 10:59:01 |
New MacOS backdoor connected to OceanLotus threat group (lien direct) |
OceanLotus has been linked to attacks against human rights organizations, researchers, and more. |
|
APT 32
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-02-21 11:13:02 |
North Korean Reaper APT uses zero-day vulnerabilities to spy on governments (lien direct) |
The often-overlooked hacking group appears to be backed by the North Korean government. |
|
APT 37
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2017-10-30 12:33:00 |
Fear the Reaper? Experts reassess the botnet\'s size and firepower (lien direct) |
Security researchers now say the botnet could be only as big as 28,000 infected devices, but warn that the figure could balloon in size at any given time. |
|
APT 37
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2017-10-24 12:46:37 |
After quietly infecting a million devices, Reaper botnet set to be worse than Mirai (lien direct) |
Reaper is on track to become one of the largest botnets recorded in recent years - and yet nobody seems to know what it will do or when. But researchers say the damage could be bigger than last year's cyberattack. |
Cloud
|
APT 37
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2017-04-03 18:33:00 |
Hackers responsible for $80M bank heist show \'no signs of stopping\' (lien direct) |
Lazarus, linked to the famous Bangladeshi bank heist, is probing Southeast Asia and Europe in the hunt for fresh targets. |
|
APT 38
|
|