Categories: Exploits and vulnerabilities Categories: News Tags: Chinese APT Tags: advanced persistent threat Tags: APT Tags: CISA Tags: NSA Tags: FBI Tags: security advisory CISA, the NSA and the FBI have compiled a list of the vulnerabilities targeted by state-sponsorted threat actors from China. |
The post Chinese APT’s favorite vulnerabilities revealed appeared first on Malwarebytes Labs.
Read moreCredit to Author: Christopher Boyd| Date: Thu, 30 Jun 2022 14:13:47 +0000
Immigration organisations are being targeted by the APT group Evilnum, using spear phishing to send malicious Word documents.
The post Immigration organisations targeted by APT group Evilnum appeared first on Malwarebytes Labs.
Read moreCredit to Author: William Tsing| Date: Thu, 30 Jan 2020 16:00:00 +0000
 | |
| Behind each cyberattack on the MSP is typically a system left unpatched, asset management undone, security officer not hired, or board who sees investment in security as a cost center rather than a long-term investment. Categories: Tags: advanced persistent threatadvanced persistent threatsAPTbreachcredential managementcredentialsdata breachhackingmanaged service providerMSPMSPsphishing |
The post Securing the MSP: why they’re their own worst enemy appeared first on Malwarebytes Labs.
Read moreCredit to Author: William Tsing| Date: Thu, 30 Jan 2020 16:00:00 +0000
| |
| Behind each cyberattack on the MSP is typically a system left unpatched, asset management undone, security officer not hired, or board who sees investment in security as a cost center rather than a long-term investment. Categories: Tags: advanced persistent threatadvanced persistent threatsAPTbreachcredential managementcredentialsdata breachhackingmanaged service providerMSPMSPsphishing |
The post Securing the MSP: their own worst enemy appeared first on Malwarebytes Labs.
Read moreCredit to Author: Malwarebytes Labs| Date: Mon, 22 Jul 2019 15:50:35 +0000
 | |
| A roundup of cybersecurity news from July 15–21, including the Zoom camera vulnerability, Extenbro, Sodinokibi, Magecart, and cybersecurity challenges facing the education sector. Categories: Tags: 2fa bypassadvanced persistent threatAndroid appsAPTbackdoorBitPaymer ransomwarebrowser extensionsbulletproofchromecybersecurity educationDataSpiiDDos attackDoppelPaymerEvilGnomeExtenbroFaceAppfacebookFacebook reporting toolfirefoxgenerationInstagramKe3changMagecartMedia File JackingprivacyRingCentral flawSodinokibitelegramvital infrastructurewhatsappZhumu flawzoom zero-day |
The post A week in security (July 15 – 21) appeared first on Malwarebytes Labs.
Read moreCredit to Author: William Tsing| Date: Wed, 16 Jan 2019 17:00:00 +0000
 | |
| While security companies are getting good at analyzing the tactics of nation-state threat actors, they still struggle with placing these actions in context and making solid risk assessments. So in this series, we’re going to take a look at a few APT groups, and see how they fit into the larger threat landscape—starting with APT10. Categories: Tags: advanced persistent threatadvanced persistent threatsaerospaceAPTAPT10APTschinaChinese Ministry of State SecurityconstructionengineeringFireEyeMSSPlugXPoison Ivyscanboxsogutelecomsthreat actors |
The post The Advanced Persistent Threat files: APT10 appeared first on Malwarebytes Labs.
Read moreRecently, we blogged about the basic functionality and features of the DUBNIUM advanced persistent threat (APT) activity group Stage 1 binary and Adobe Flash exploit used during the December 2015 incident (Part 1, Part 2). In this blog, we will go through the overall infection chain structure and the Stage 2 executable details. Stage 2 executables…
Read more