APT40 Archives

ransomware China Chinese Meng FCC Thousand Talents Program

China-Backed Threat Group Rapidly Exploits New Flaws: Agencies

Jeffrey Burt | July 9, 2024 | APT40, china espionage, PoC Exploit

APT40, a threat group backed by China's government, quickly adapts POC exploits of popular software like Microsoft Exchange and Log4j to attack corporate and government networks in the U.S., Australia, and elsewhere, ...

Security Boulevard

Nations come together to condemn China: APT31 and APT40

Gary Warner | July 20, 2021 | APT31, APT40, china, Hafnium, Kryptonite Panda, Leviathan, Ministry of State Security, MSS Hackers

On Monday (19JUL2021) President Biden announced that the US and its allies were joining together to condemn and expose that China was behind a set of unprecedented attacks exploiting vulnerabilities in Microsoft ...

CyberCrime & Doing Time

Introducing RDP Inferences

By Anthony Kasza, Technical Director, Corelight Corelight recently released a new package, focused on RDP inferences, as part of our Encrypted Traffic Collection. This package runs on Corelight Sensors and provides network ...

Bright Ideas Blog

Analyzing Encrypted RDP Connections

Anthony Kasza | May 13, 2020 | APT39, APT40, Corelight Labs, encryption, Microsoft, MITRE ATT&CK, MS-RDPBCGR, MS-RDPEUDP, MS-RDPEUDP2, open source, powershell, RDP, SharpRDP, SSH, TCP, TLS, Windows, Zeek

By Anthony Kasza, Corelight Security Researcher Microsoft’s Remote Desktop Protocol (RDP) is used to remotely administer systems within Windows environments. RDP is everywhere Windows is and is useful for conducting remote work ...

Bright Ideas Blog

Cyber Security Roundup for February 2020

SecurityExpert | February 2, 2020 | adobe, APT40, brexit, cisco, Coalfire, cyber security roundup, cybercrime, Cybersecurity, Intel, LOC, Memty, Microsoft, nsa, patching, Ransomware, Regenix, Ryuk, Sodinokibi, sonos, Travelex

A roundup of UK focused cyber and information security news stories, blog posts, reports and threat intelligence from the previous calendar month, January 2020.After years of dither and delay the UK government ...

IT Security Expert Blog

APT40

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On