What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-08-10 14:30:04 | Black Hat 2020: Fixing voting – boiling the ocean? (lien direct) | With the big voting day rapidly approaching, can the security of the election still be shored up? If so, how? | APT 32 | ||
 |
2020-06-12 12:17:52 | (Déjà vu) Insurance firm discloses data breach (lien direct) | Fortune 500 insurance holding company Genworth Financial disclosed a data breach after an unauthorized party gained access to insurance agents’ online accounts using compromised login credentials. The U.S. mortgage and long term care insurer had revenue of $8,6 billion during the last fiscal year and it reached a deal with China Oceanwide Holdings Group that […] | Data Breach | APT 32 | |
 |
2020-05-12 18:00:00 | That Fresh Sea Breeze You Breathe May Be Laced With Microplastic (lien direct) | Researchers have discovered that the ocean is burping tiny plastic particles, which then blow onto land-and potentially into your lungs. | APT 32 | ||
 |
2020-05-10 14:50:19 | DigitalOcean Admits Of Data Breach After Leaving Internal Document Online (lien direct) | DigitalOcean, the world's leading web hosting platform, has confirmed that it exposed customer data after it accidentally left an internal Digital Ocean document online, according to a report from The Hacker News. According to the breach notification email sent to affected customers, the data leak took place when a DigitalOcean-owned document from 2018 was unintentionally […] | Data Breach Guideline | APT 32 | |
 |
2020-05-08 20:31:00 | Digital Ocean says it exposed customer data after it left an internal document online (lien direct) | Digital Ocean says no customer servers were accessed following this security lapse. | APT 32 | ||
 |
2020-05-08 15:03:00 | DigitalOcean Data Leak Incident Exposed Some of Its Customers Data (lien direct) | DigitalOcean, one of the biggest modern web hosting platforms, recently hit with a concerning data leak incident that exposed some of its customers' data to unknown and unauthorized third parties.
Though the hosting company has not yet publicly released a statement, it did has started warning affected customers of the scope of the breach via an email.
According to the breach notification |
APT 32 | ||
 |
2020-05-04 15:17:37 | (Déjà vu) A week in security (April 27 – May 3) (lien direct) |
A roundup of the previous week's security news, including cloud data protection, Troldesh, VPNs, the cybercrime economy, and more.
Categories:
Malwarebytes news
Tags: AppleAPTawisbluetoothbluetooth attackBluetooth vulnerabilitiesCivicSmartcloud securitycoronaviruscovid-19hackedhospitalsJITjust in timeoceanlotuspandemic survival bookPhantomLancephishing scamransomwarerecapscadaSMBTroldesh ransomwarevpnweekly blog roundupzoomzoom phishing
(Read more...)
|
APT 32 | ||
|
2020-04-29 09:49:08 | Android Spyware Spread by Google Play (lien direct) | The PhantomLance espionage campaign is targeting specific victims, mainly in Southeast Asia - and could be the work of the OceanLotus APT. A sophisticated, ongoing espionage campaign aimed at Android users in Asia is likely the work of the OceanLotus advanced persistent threat (APT) actor, researchers said this week. Dubbed PhantomLance by Kaspersky, the campaign […] | Threat | APT 32 | |
 |
2020-04-28 16:30:00 | 5-Year-Long Cyber Espionage Campaign Hid in Google Play (lien direct) | OceanLotus targeted Android devices in the so-called PhantomLance campaign. | APT 32 | ||
 |
2020-04-28 15:19:37 | PhantomLance, une campagne APT Android visant l\'Asie du Sud-Est (lien direct) | Les chercheurs de Kaspersky ont mis au jour l'existence d'une campagne APT (menace persistante avancée) visant les utilisateurs d'appareils Android. Baptisée PhantomLance, cette campagne semble être attribuable au groupe OceanLotus. Lancée depuis au moins 2015, PhantomLance est toujours active à ce jour. Elle est construite à partir de plusieurs versions d'un logiciel espion - un programme créé pour recueillir les données des victimes - et utilise des tactiques intelligentes de distribution, notamment (...) - Malwares | APT 32 | ||
 |
2020-04-23 18:29:49 | Vietnam-linked APT32 group launches COVID-19-themed attacks against China (lien direct) | The Vietnam-linked cyberespionage group tracked as APT32 carried out hacking campaigns against Chinese entities to collect intelligence on the COVID-19 crisis. Vietnam-linked APT group APT32, also known as OceanLotus and APT-C-00, carried out cyber espionage campaigns against Chinese entities to gather intelligence on the COVID-19 crisis. The APT32 group has been active since at least 2012, […] | APT 32 | ||
 |
2020-04-22 09:00:00 | Acteurs de menace vietnamiens APT32 ciblant le gouvernement de Wuhan et le ministère chinois de la gestion des urgences dans le dernier exemple de l'espionnage lié à Covid-19 Vietnamese Threat Actors APT32 Targeting Wuhan Government and Chinese Ministry of Emergency Management in Latest Example of COVID-19 Related Espionage (lien direct) |
De Janvier à avril 2020, des acteurs vietnamiens présumés APT32 ont mené des campagnes d'intrusion contre les cibles chinoises qui, selon Maniant, mention, ont été conçues pour collecter des renseignements sur la crise de Covid-19.Les messages de phishing de lance ont été envoyés par l'acteur au ministère de la gestion des urgences de la Chine ainsi que par le gouvernement de la province de Wuhan, où Covid-19 a été identifié pour la première fois.Bien que le ciblage de l'Asie de l'Est soit cohérent avec les activité que nous avons précédemment signalée sur APT32 , cet incidentet d'autres intrusions publiquement signalées font partie d'une augmentation mondiale du cyber
From at least January to April 2020, suspected Vietnamese actors APT32 carried out intrusion campaigns against Chinese targets that Mandiant Threat Intelligence believes was designed to collect intelligence on the COVID-19 crisis. Spear phishing messages were sent by the actor to China\'s Ministry of Emergency Management as well as the government of Wuhan province, where COVID-19 was first identified. While targeting of East Asia is consistent with the activity we\'ve previously reported on APT32, this incident, and other publicly reported intrusions, are part of a global increase in cyber |
Threat | APT 32 APT 32 | ★★★★ |
|
2020-04-07 13:00:00 | How to Escape From a Sunken Submarine (lien direct) | First of all, you can't just open the hatch when you're trapped at the bottom of the ocean. But there is a way out-it requires physics and some audacity. | APT 32 | ||
|
2020-03-22 12:00:00 | An Ancient Magma Flood Offers Clues About Global Warming (lien direct) | 4 million years ago, a burst of hot rock heated the planet, causing ocean acidification, massive storms, and extinctions. What can we learn from this early example? | APT 32 | ||
|
2020-03-07 13:00:00 | Dolphins Are Still Accidental Casualties of Tuna Fishing (lien direct) | A new study estimates that about 80,000 cetaceans are swept up every year by tuna-fishing nets in the Indian Ocean. | APT 32 | ||
 |
2020-03-04 09:00:00 | Zero-Day Bug Allowed Attackers to Register Malicious Domains (lien direct) | A zero-day vulnerability impacting Verisign and several SaaS services including Google, Amazon, and DigitalOcean could have allowed attackers to register .com and .net homograph domain names (among others) that could be used in insider, phishing, and social-engineering attacks against organizations. [...] | Vulnerability | APT 32 | |
|
2020-02-21 13:00:00 | \'Environmental DNA\' Lets Scientists Probe Underwater Life (lien direct) | With the help of a new kind of drone, marine biologists can sequence DNA found in the ocean to reveal what's living in an ecosystem-and what's missing. | APT 32 | ||
|
2020-02-18 13:00:00 | The Atlantic Ocean\'s \'Conveyor Belt\' Stirs Up a Science Fight (lien direct) | Researchers are debating the best way to monitor the ocean currents that sweep through the Labrador Sea-and may foretell the planet's climate future. | APT 32 | ||
|
2020-01-10 13:00:00 | Gadget Lab Podcast: Wrapping Up CES 2020 (lien direct) | The hosts look back at a show filled with fake-meat sliders, AI everything, and an ocean of electric scooters. | APT 32 | ||
 |
2019-12-30 14:30:20 | So that tweet was misunderstood (lien direct) | I'm currently experiencing the toxic hell that is a misunderstood tweet going viral. It's a property of the social media. The more they can deliberately misunderstand you, the more they can justify the toxicity of their response. Unfortunately, I had to delete it in order to stop all the toxic crud and threats of violence.The context is how politicians distort everything. It's like whenever they talk about sea level rise, it's always about some city like Miami or New Orleans that is sinking into the ocean already, even without global warming's help. Pointing this out isn't a denial of global warming, it's pointing out how we can't talk about the issue without exaggeration. Mankind's carbon emissions are indeed causing sea level to rise, but we should be talking about how this affects average cities, not dramatizing the issue with the worst cases.The same it true of health care. It's a flawed system that needs change. But we don't discuss the people making the best of all bad choices. Instead, we cherry pick those who made the worst possible choice, and then blame the entire bad outcome on the system.My tweet is in response to this Elizabeth Warren reference to a story were somebody chose the worst of several bad choices:No one should have to choose between medication or housing. No one should be forced to ration insulin and risk dangerous complications. We need #MedicareForAll-and we need to tackle corruption and price gouging in drug manufacturing head on. https://t.co/yNxo7yUDri- Elizabeth Warren (@ewarren) September 23, 2019My tweet is widely misunderstood as saying "here's a good alternative", when I meant "here's a less bad alternative". Maybe I was wrong and it's not "less bad", but nobody has responded that way. All the toxic spew on Twitter has been based on their interpretation that I was asserting it was "good".And the reason I chose this particular response is because I thought it was a Democrat talking point. As Bernie Sanders (a 2020 presidential candidate) puts it:“The original insulin patent expired 75 years ago. Instead of falling prices, as one might expect after decades of competition, three drugmakers who make different versions of insulin have continuously raised prices on this life-saving medication.”This is called "evergreening", as described in articles like this one that claim insulin makers have been making needless small improvements to keep their products patent-protected, so that they don't have to compete against generics whose patents have expired.It's Democrats like Bernie who claim expensive insulin is little different than cheaper insulin, not me. If you disagree, go complain to him, not me.Bernie is wrong, by the way. The more expensive "insulin analogs" result in dramatically improved blood sugar control for Type 1 diabetics. The results are life changing, especially when combined with glucose monitors and insulin pumps. Drug companies deserve to recoup the billions spent on these advances. My original point is still true that "cheap insulin" is better than "no insulin", but it's also true that it's far worse than modern, more expensive insulin.Anyway, I wasn't really focused on that part of the argument but the other part, how list prices are an exaggeration. They are a fiction that nobody needs to pay, even those without insurance. They aren't the result of price gouging by drug manufacturers, as Elizabeth Warren claims. Bu | APT 32 | ||
|
2019-12-06 20:39:56 | BMW and Hyundai hacked by Vietnamese hackers, report claims (lien direct) | Hacks linked to Ocean Lotus (APT32), a group believed to operate with orders from the Vietnamese government. | APT 32 | ★★★★ | |
 |
2019-12-02 13:57:26 | Tornados, Necessity, and the Evolution of Mitigating Controls (lien direct) | According to the National Oceanic and Atmospheric Administration (NOAA), a tornado (also called a twister, whirlwind, or cyclone) is a violently rotating column of air that extends from a thunderstorm and comes into contact with the ground. Tornado intensity is measured by the enhanced Fujita (EF) scale from 0 through 5, based on the amount […] | APT 32 | ||
|
2019-11-28 19:00:00 | Scientists Spot an Undersea Fault Using Fiber-Optic Cables (lien direct) | Unused telecom cables, known as dark fiber, could help scientists finally map the ocean floor and discover new earthquake hot spots. | APT 32 | ||
|
2019-11-11 20:00:00 | Baby Fish Feast on Microplastics, and Then Get Eaten (lien direct) | Fish larvae off the coast of Hawaii are mistaking tiny pieces of plastic for prey, an alarming finding with big implications for the oceanic food web. | APT 32 | ||
|
2019-10-26 18:45:00 | Ocean Cleanup\'s New Plastic-Catcher … Kinda Already Exists? (lien direct) | The anti-plastic crusaders have another plan to keep junk from reaching the sea: trash-eating barges in rivers. | APT 32 | ||
 |
2019-10-06 23:12:03 | Internal domain name collision (lien direct) | Brief introductionInternal domain name collisions occurs when the organisations are using local domains in the internal network and the same domain names exist also outside of the organisation, on a global DNS. DNS query which should resolve to the internal resources leaks to the Internet. If an attacker is able to control such domain on global DNS then he can perform a MITM (Man-in-the-Middle) attacks on an organisation.Name collisionDNS name collision changed into much more severe problem when it became possible to register new TLDs (Top-Level Domain) [https://data.iana.org/TLD/tlds-alpha-by-domain.txt], especially these owned by DONUTS company [https://donuts.domains/great-domains/domain-categories/]. Most problematic TLDs which could be used in attacks are inter alia: network | APT 32 | ||
|
2019-10-04 12:00:00 | Hurricanes May Be Reshaping Big Parts of the Ocean (lien direct) | Scientists are just starting to tease out the long-distance changes hurricanes inflict on coastlines and the deep ocean alike. | APT 32 | ||
|
2019-09-25 09:00:00 | We\'re Killing the Oceans, and We\'ll Pay Dearly for It (lien direct) | Depending on whom you ask, the IPCC's latest report is either startling, depressing, or dire-or more likely a combination of all three. | APT 32 | ★★★★ | |
|
2019-09-23 11:00:00 | Cleaner Ships May Mean More Expensive Holidays (lien direct) | New rules designed to reduce sulfur pollution from ocean-going ships will increase demand for low-sulfur fuel, boosting the cost of some imported goods. | APT 32 | ||
 |
2019-09-18 09:15:50 | Administration : Des milliers de documents de mexicains sur le web (lien direct) | Le stockage dans le cloud est un élément de cybersécurité que trop peu d’entreprise prend au sérieux, pensant que le stockeur se charge de fermer les portes. Si Amazon, Google, Oceanet Technology … proposent des services et des murs blindés, vous restez responsable des clés qui ouvrent le coff... Cet article Administration : Des milliers de documents de mexicains sur le web est apparu en premier sur ZATAZ. | APT 32 | ||
|
2019-09-12 15:00:00 | The Riddle, and Controversy, of All That Missing Plastic (lien direct) | The contentious Ocean Cleanup campaign has an idea where marine plastic ends up. But it's already stirring debate. | APT 32 | ||
 |
2019-07-17 15:00:00 | Developers: Why remote work is the new norm (lien direct) | 86% of developers said they currently work remotely in some capacity, according to a DigitalOcean report. | APT 32 | ||
|
2019-07-10 12:00:00 | Little Plastic \'Nurdles\' Are Flooding Beaches and Waterways (lien direct) | These lentil-sized pellets are used to make nearly all plastic goods. But they often escape and end up polluting oceans and coastal communities. | APT 32 | ||
|
2019-07-05 12:00:00 | Forget the Moon-We Should Go to Jupiter\'s Idyllic Europa (lien direct) | NASA's Europa mission is struggling, but scientists are keeping the dream alive with exotic approaches to sampling that moon and its mysterious ocean. | APT 32 | ★★★★ | |
|
2019-07-02 06:20:02 | After 2 years under the radars, Ratsnif emerges in OceanLotus ops (lien direct) | Security experts spotted a news wave of attacks carried out by the OceanLotus APT group that involved the new Ratsnif Trojan. Experts at the security firm Cylance detected a new RAT dubbed Ratsnif that was used in cyber espionage operations conducted by the OceanLotus APT group. The OceanLotus APT group, also known as APT32 or Cobalt Kitty, is state-sponsored group that […] | APT 32 | ||
 |
2019-07-02 04:54:05 | Researchers Analyze Vietnamese Hackers\' Suite of RATs (lien direct) | BlackBerry Cylance security researchers have analyzed a suite of remote access Trojans (RATs) that the Vietnam-linked threat actor OceanLotus has been using in attacks for the past three years. | Threat | APT 32 | |
|
2019-07-01 12:38:02 | OceanLotus APT Uses New Ratsnif Trojan for Network Attacks (lien direct) | A fairly undetected remote access trojan called Ratsnif and used in cyber-espionage campaigns from the OceanLotus group has gained new capabilities that allow it to modify web pages and SSL hijacking. [...] | APT 32 | ||
|
2019-06-25 18:45:03 | Fitted With Sensors, Antarctic Seals Track Water Temperatures (lien direct) | Scientists have outfitted an army of Antarctic pinnipeds with trackers to monitor warming oceans. | APT 32 | ||
 |
2019-06-10 11:55:00 | Report Reveals Website Security Risk For Australian & NZ Firms (lien direct) | New research has found 87% of SME websites using the Magento platform are currently at high risk from cyber attacks. By contrast, under 10% of websites using other major e-commerce platforms surveyed register in the same high risk category. The research, from cyber security firm Foregenix, analysed nearly 9 million websites worldwide, including 150,000 in Oceania – Australia and New … The ISBuzz Post: This Post Report Reveals Website Security Risk For Australian & NZ Firms | APT 32 | ||
|
2019-06-02 05:58:04 | Gadget Lab Podcast: An Interview With Firewire Surfboards CEO Mark Price (lien direct) | Listen to an interview with our guest Mark Price about how to make a surfboard without ruining the ocean. | APT 32 | ||
|
2019-05-22 17:00:00 | Scientists Go Back in Time to Find More Troubling News About Earth\'s Oceans (lien direct) | A clever study finds communities of foraminifera, a hard-shelled kind of plankton, have transformed dramatically since the Industrial Revolution. | APT 32 | ||
|
2019-05-17 15:00:00 | Now Ocean Plastics Could Be Killing Oxygen-Making Bacteria (lien direct) | The toxins that plastics leach into seawater severely affect the bacteria that provides perhaps 20 percent of Earth's oxygen. That's when things get complicated... | APT 32 | ||
|
2019-04-28 12:00:00 | Scientists Discover Nearly 200,000 Kinds of Ocean Viruses (lien direct) | Far more viruses appear to populate the seas than was previously thought, a discovery that could help clarify viruses' role in the global carbon cycle. | APT 32 | ||
|
2019-04-26 14:00:00 | Exquisite Underwater Photos to Make You Love the Ocean (lien direct) | Christian Vizl gets up close with sharks, sea lions and more. | APT 32 | ||
|
2019-04-22 15:47:02 | (Déjà vu) A week in security (April 15 – 21) (lien direct) |
A roundup of security news from April 15–21, including an explanation of like-farming, Ellen DeGeneres scam, flaws in VPN services, funky malware formats found in Ocean Lotus, and more.
Categories:
Security world
Week in security
Tags: a week in securitycyber resilienceEllen DeGeneresfake Airbnb sitesFlame 2.0IE vulnerabilitylike-farmingnotre dame disinformationVPN flawweek in security
(Read more...)
|
Malware | APT 32 | |
|
2019-04-19 18:37:05 | Funky malware format found in Ocean Lotus sample (lien direct) |
Recently, one of our researchers presented at the SAS conference on "Funky malware formats"-atypical executable formats used by malware that are only loaded by proprietary loaders. In this post, we analyze one of those formats in a sample called Ocean Lotus from the APT 32 threat group in Vietnam.
Categories:
Malware
Threat analysis
Tags: APT 32atypical malware formatsBLOBCABcustom formatmalware formatocean lotusVietnam
(Read more...)
|
Malware Threat | APT 32 | |
|
2019-04-09 09:30:05 | OceanLotus: macOS malware update (lien direct) | >Latest ESET research describes the inner workings of a recently found addition to OceanLotus's toolset for targeting Mac users | Malware | APT 32 | |
|
2019-04-05 15:08:01 | Sea Levels Are Rising. Time to Build ... Floating Cities? (lien direct) | If climate change ends up coming for your home, you could move inland. Or you could decamp to tessellated platforms floating on the ocean. | APT 32 | ||
|
2019-04-03 17:25:04 | OceanLotus APT group leverages a steganography-based loader to deliver backdoors (lien direct) | The OceanLotus APT group, also known as APT32 or Cobalt Kitty, leverages a steganography-based loader to deliver backdoors on compromised systems. Security researchers at Cylance discovered that the OceanLotus APT (also known as APT32 or Cobalt Kitty, group is using a loader leveragingsteganography to deliver a version of Denes backdoor and an updated version of […] | APT 32 | ||
 |
2019-04-03 14:44:02 | OceanLotus APT Uses Steganography to Shroud Payloads (lien direct) | The OceanLotus APT is using two new loaders which use steganography to read their encrypted payloads. | APT 32 | ★★★★ |
To see everything:
Our RSS (filtrered)
