cyberespionage Archives

Threat Group Running Espionage Operations Against Dozens of Governments

Jeffrey Burt | February 5, 2026 | Cobalt Strike, cyberespionage, government attack, Palo Alto Networks Unit 42, phishing attack, spying, Vulnerability Exploitation

Unit 42 researchers say an Asian threat group behind what they call the Shadow Campaigns has targeted government agencies in 37 countries in a wide-ranging global cyberespionage campaign that has involved phishing ...

Security Boulevard

AI as Cyberattacker

Bruce Schneier | November 21, 2025 | AI, cyberattack, cyberespionage, Espionage, Uncategorized

From Anthropic: In mid-September 2025, we detected suspicious activity that later investigation determined to be a highly sophisticated espionage campaign. The attackers used AI’s “agentic” capabilities to an unprecedented degree—using AI not ...

Schneier on Security

telecom, industry, telecommunications, cybersecurity, collaboration telecom, threat actors

200,000 More SIM Cards Found Linked to Secret Telecom Network in NYC

Jeffrey Burt | October 1, 2025 | China-linked Hackers, cyberespionage, DDoS attack, Telecommunications Security, U.S. Secret Service

Federal investigators have found 200,000 more SIM cards at a site in New Jersey that were part of a sprawling hidden telecommunications network that initially included 100,000 other SIM cards and 300 ...

Security Boulevard

First Sentencing in Scheme to Help North Koreans Infiltrate US Companies

Bruce Schneier | August 4, 2025 | courts, crime, cyberespionage, Espionage, law enforcement, North Korea, Uncategorized

An Arizona woman was sentenced to eight-and-a-half years in prison for her role helping North Korean workers infiltrate US companies by pretending to be US workers. From an article: According to court ...

Schneier on Security

Chinese, A PRC flag flies atop a metal flagpole

Chinese Hacker Linked to Silk Typhoon Charged With Stealing COVID Data

Jeffrey Burt | July 9, 2025 | China-linked Hackers, covid-19 vaccine, cyberespionage, Silk Typhoon

A 33-year-old Chinese national linked to the Silk Typhoon espionage group was arrested in Italy on a U.S. warrant that accuses him of conspiring with others in hacks of U.S. COVID-19 vaccine ...

Security Boulevard

Iranian Cyber Threat Escalation: Preparing for Asymmetric Response through Adversarial Validation Emulation

Paul Reid | June 23, 2025 | cyberattacks, cyberdefense, Cyberdefense Operations, cyberespionage, Cybersecurity, Iran

Amid rising tensions after Israeli and U.S. strikes on Iranian nuclear sites, experts warn of increased Iranian cyber retaliation. With limited conventional options, Iran is expected to rely on cyberattacks against U.S ...

AttackIQ

Silk Typhoon Hackers Indicted

Bruce Schneier | March 11, 2025 | china, cyberattack, cyberespionage, Espionage, Hacking, law enforcement, Uncategorized

Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions around the ...

Schneier on Security

cybersecurity skills air gapping Russia GolenJackal

GoldenJackal Targets Embassies, Steals Data from Air-Gapped Systems

Jeffrey Burt | October 8, 2024 | air-gapped systems, cyberespionage, russia hacker

GoldenJackal, a threat group possibly from Russia, has been attacking embassies and other government agencies from Europe, South Asia, and the Middle East with two distinct malicious toolsets designed to steal information ...

Security Boulevard

Response to CISA Advisory (AA24-249A): Russian Military Cyber Actors Target US and Global Critical Infrastructure

Francis Guibernau | September 10, 2024 | adversary emulation, cisa, Critical Infrastructure, cyberespionage, Espionage, GRU, Russia, sabotage, Unit 29155, WhisperGate

AttackIQ has released a new assessment template in response to the CISA Advisory (AA24-249A) published on September 5, 2024, that assesses cyber actors affiliated with the Russian General Staff Main Intelligence Directorate ...

AttackIQ

Cybersecurity Insights with Contrast CISO David Lindner | 9/6/24

David Lindner, Director, Application Security | September 6, 2024 | 2fa, cyberespionage, MFA, Thought Leaders, Vulnerability Disclosure

Insight #1: SQL injection baffles airport security You mean to say that SQL Injection is still a problem? How many more of these have to happen before we realize there are control layers ...

AppSec Observer

cyberespionage

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On