2 Chinese Indicted for Conducting MSS-Directed Cyberespionage

2 Chinese Indicted for Conducting MSS-Directed Cyberespionage

The Department of Justice (DoJ) announced the indictment of two individuals who operated under the direction of the Chinese Ministry of State Security (MSS): Zhu Hua (朱华), aka Afwar, aka CVNX, aka ...
Security Boulevard
'Five Eyes' Countries Attribute APT10 Attacks to Chinese Intelligence Service

‘Five Eyes’ Countries Attribute APT10 Attacks to Chinese Intelligence Service

Following the indictment of two alleged members of a Chinese cyberespionage group by the U.S. Department of Justice Dec. 20, the governments of Canada, Australia, New Zealand and the U.K. have publicly ...
Security Boulevard
Fileless Malware Rapid Expansion

Researcher Drops Third Windows Zero-Day Exploit in Four Months

A security researcher who uses the online handle SandboxEscaper has published proof-of-concept exploit code for an unpatched vulnerability in Windows. The flaw is located in the “MsiAdvertiseProduct” function, which, according to Microsoft’s ...
Security Boulevard
Chinese Hackers Allegedly Snooped on EU Diplomatic Cables for Years

Chinese Hackers Allegedly Snooped on EU Diplomatic Cables for Years

Hackers have been listening to European Union diplomatic communications for the past three years, intercepting international negotiations and messages with top leaders in the US, Russia, China, Israel, Saudi Arabia and other ...
Huawei Wants US to Show Clear Evidence to Back Security Allegations

Huawei Wants US to Show Clear Evidence to Back Security Allegations

After Germany refused to ban Huawei devices due to a lack of strong evidence to support cyberespionage accusations, Huawei now demands Washington show evidence to support its fears. “There are no concerns ...
Microsoft Patches Another Actively Exploited Zero-Day Vulnerability

Microsoft Patches Another Actively Exploited Zero-Day Vulnerability

Microsoft released security updates for its products Dec. 11, fixing 38 vulnerabilities including a privilege escalation flaw in the Windows kernel that has been exploited by cyberespionage groups since October. The zero-day ...
Security Boulevard
Czech Republic Blames Russia for Yearlong Email Breach

Czech Republic Blames Russia for Yearlong Email Breach

The Czech government’s Security Information Service (BIS) revealed in a report that hackers associated with the Russian government are responsible for an email breach, compromising the email system of the country’s Ministry ...
Security Boulevard
APT28 Pulls Out New Malware Cannon

APT28 Pulls Out New Malware Cannon

The notorious Russian cyberespionage group known as APT28, Fancy Bear and Sofacy is targeting government organizations using a new Trojan program called Cannon. Researchers from Palo Alto Networks detected new spear-phishing campaigns ...
Security Boulevard
Drupal Patches Critical Remote Code Execution Flaws

Drupal Patches Critical Remote Code Execution Flaws

The popular Drupal content management system received fixes for five serious vulnerabilities that allow for remote code execution and could help hackers break into websites. Two of the patched vulnerabilities are rated critical ...
Security Boulevard
Know Your Firewall: Layer 3 vs. Layer 7

New Attacks Reuse Malware Code from Dormant APT1

New attacks against organizations from South Korea, Canada and the United States use a malicious implant that’s based on an old malware program associated with a dormant Chinese APT group known as ...
Security Boulevard
Loading...