Cybercriminal
EclecticIQ Retrospective: A Look at the Themes & Events That Shaped the 2023 Cyber Landscape
As the year draws to a close, EclecticIQ’s Intelligence & Research Team looked back on the 2023 cyber landscape: from the evolving tactics of Chinese state-sponsored cyber operations, the increasing integration of ...
IPStrom Takedown Russian Mastermind Pleads Guilty
On Tuesday, November 14th, 2023, the United States (US) government initiated the IPStrom takedown, Russian mastermind pled guilty to being the brains behind the operation. The IPStrom malware network was taken down ...
Chinese State-Sponsored Cyber Espionage Activity Targeting Semiconductor Industry in East Asia
Executive Summary EclecticIQ analysts identified a cyber espionage campaign where threat actors used a variant of HyperBro loader with a Taiwan Semiconductor Manufacturing (TSMC) lure, likely to target the semiconductor industry in ...
Decrypting Key Group Ransomware: Emerging Financially Motivated Cyber Crime Gang
Executive Summary The Key Group ransomware family was first revealed on January 6, 2023, continuing their operations since then. EclecticIQ researchers assess with high confidence, the Key Group ransomware gang is primarily ...
3CX Incident Attributed to North Korea; New LockBit MacOS Sample
Mandiant Attributes 3CX Supply Chain Attack to North Korean Activity Cluster On April 11, 2023, 3CX reported that Mandiant - who investigated the supply chain attack using a digitally signed 3CXDesktopApp installer ...
Exposed Web Panel Reveals Gamaredon Group’s Automated Spear Phishing Campaigns
Executive Summary On February 09, 2023, EclecticIQ analysts identified a spear phishing campaign targeting Ukrainian government entities like the Foreign Intelligence Service of Ukraine (SZRU) and Security Service of Ukraine (SSU). Analysts ...
The Most Pressing Cybersecurity Challenges of 2023
The global cost of cybercrime attacks is rising and reached an estimated €5.5 trillion in 2021. Ransomware attacks alone hit organizations somewhere in the world every 11 seconds. Our use of and ...
ESXi Ransomware Updates Counter Recovery Script; Killnet Targets Airports and Hospitals
Malware Updates: New ESXi Ransomware Variant Counter Recovery Script Operators behind the ransomware attacks on VMware ESXi servers early February have updated their malware to counter a recovery script released by the ...
Security Service of Ukraine and NATO Allies Potentially Targeted by Russian State-Sponsored Threat Actor
New and Noteworthy: Sandworm APT Group Attacked Ukrainian News Agency Ukrinform by Data Wiper Malwares On January 18, 2023, the Computer Emergency Response Team of Ukraine (CERT-UA) identified a data wiper malware ...
2023: Complexity Reigns in Cybersecurity as Existing Threats Adapt and New Technologies Emerge
Last December, the team looked at various topics related to the field of cyber and information security. One thing is for certain: cybersecurity is not monolithic—there are so many facets of cybersecurity, ...