VulnHub

Real-time Cybersecurity News

Articles tagged "APT"

Found 34 articles

Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera

The Hacker News

Actively Exploited

The article reports on a joint investigation revealing a remote IT worker infiltration scheme linked to North Korea's Lazarus Group. This scheme highlights the persistent threat posed by state-sponsored cyber actors, emphasizing the need for heightened awareness and security measures against such infiltration tactics.

Impact: Remote IT workers, organizations employing remote staff, potential victims of Lazarus Group attacks.
Remediation: Organizations should enhance security protocols for remote workers, including robust vetting processes, employee training on cybersecurity awareness, and monitoring for unusual activity.
APTMalware
Read Original
ToddyCat: your hidden email assistant. Part 1

Securelist

The article discusses the ToddyCat APT attacks that target corporate email systems, highlighting the use of advanced tools like TomBerBil, TCSectorCopy, and XstReader. The severity of these attacks lies in their method of stealing access tokens from Outlook, posing significant risks to corporate security.

Impact: Corporate email systems, Outlook
Remediation: N/A
APT
Read Original
China's 'PlushDaemon' Hackers Infect Routers to Hijack Software Updates

darkreading

Actively Exploited

China's state-sponsored hackers, known as 'PlushDaemon', have developed a method to infect routers and hijack software updates, primarily targeting Chinese organizations. This sophisticated approach allows them to operate under the radar, posing a significant threat to cybersecurity within the region.

Impact: Routers and software update systems used by Chinese organizations.
Remediation: Implement network security measures, regularly update router firmware, and monitor for unusual software update behaviors.
UpdateAPT
Read Original
PreviousPage 3 of 3