China-linked APT Bronze Starlight is deploying post-intrusion ransomware families as a diversionary action to its cyber espionage operations. Researchers from Secureworks reported that a China-linked APT group, tracked as Bronze Starlight (APT10), is deploying post-intrusion ransomware families to cover up the cyber espionage operations. The experts observed an activity cluster involving post-intrusion ransomware such as […] The post China-linked APT Bronze Starlight deploys ransomware as a smokescreen appeared first on Security Affairs.
...moreSummary
Total Articles Found: 4
Top sources:
Top Keywords:
- China: 4
- APT: 2
- Breaking News: 2
- Hacking: 2
- information security news: 2
Top Authors
Top Articles:
- Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack
- Another SolarWinds Orion Hack
- China-linked APT Bronze Starlight deploys ransomware as a smokescreen
- China Taking Control of Zero-Day Exploits
China-linked APT Bronze Starlight deploys ransomware as a smokescreen
Published: 2022-06-26 13:40:00
Popularity: 9
Author: Pierluigi Paganini
Keywords:
China Taking Control of Zero-Day Exploits
Published: 2021-07-14 11:04:46
Popularity: 5
Author: Bruce Schneier
Keywords:
LLM Says: "Red flag waving"
China is making sure that all newly discovered zero-day exploits are disclosed to the government. Under the new rules, anyone in China who finds a vulnerability must tell the government, which will decide what repairs to make. No information can be given to “overseas organizations or individuals” other than the product’s manufacturer. No one may “collect, sell or publish information on network product security vulnerabilities,” say the rules issued by the Cyberspace Administration of China and the police and industry ministries. This just blocks the cyber-arms trade. It doesn’t prevent researchers from telling the products’ companies, even if they are outside of China...
...moreAnother SolarWinds Orion Hack
Published: 2021-02-04 12:11:53
Popularity: 48
Author: Bruce Schneier
Keywords:
LLM Says: ""Network Nightmare""
At the same time the Russians were using a backdoored SolarWinds update to attack networks worldwide, another threat actor — believed to be Chinese in origin — was using an already existing vulnerability in Orion to penetrate networks: Two people briefed on the case said FBI investigators recently found that the National Finance Center, a federal payroll agency inside the U.S. Department of Agriculture, was among the affected organizations, raising fears that data on thousands of government employees may have been compromised. […] Reuters was not able to establish how many organizations were compromised by the suspected Chinese operation. The sources, who spoke on condition of anonymity to discuss ongoing investigations, said the attackers used computer infrastructure and hacking tools previously deployed by state-backed Chinese cyberspies...
...moreChinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack
Published: 2020-01-25 13:21:43
Popularity: 180
Author: Pierluigi Paganini
Keywords:
Chinese hackers have exploited a zero-day vulnerability the Trend Micro OfficeScan antivirus in the recently disclosed hack of Mitsubishi Electric. According to ZDNet, the hackers involved in the attack against the Mitsubishi Electric have exploited a zero-day vulnerability in Trend Micro OfficeScan to infect company servers. This week, Mitsubishi Electric disclosed a security breach that might have […] The post Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack appeared first on Security Affairs.
...more