Threat Actor APT

Chinese State-Sponsored Cyber Espionage Activity Targeting Semiconductor Industry in East Asia

Chinese State-Sponsored Cyber Espionage Activity Targeting Semiconductor Industry in East Asia

| | Cybercriminal, intelligence research, nation-state, Threat Actor APT, Threat Intelligence
Executive Summary  EclecticIQ analysts identified a cyber espionage campaign where threat actors used a variant of HyperBro loader with a Taiwan Semiconductor Manufacturing (TSMC) lure, likely to target the semiconductor industry in ...
EclecticIQ Blog
Flax Typhoon targeting Taiwan, Ransomware Emphasizing Linux-Centric Payloads

Flax Typhoon targeting Taiwan, Ransomware Emphasizing Linux-Centric Payloads

| | Malware, Ransomware, Threat Actor APT, Threat Intelligence, Threats and Vulnerabilities
Flax Typhoon: Microsoft Uncovers Espionage Tactics Targeting Taiwan        Microsoft has detected malicious activities primarily targeting Taiwanese organizations by a nation-state actor named Flax Typhoon, which is believed to be ...
EclecticIQ Blog
FIN8 Group Using Modified Sardonic Malware for Deployment of BlackCat Ransomware

FIN8 Group Using Modified Sardonic Malware for Deployment of BlackCat Ransomware

| | Industry, Malware, Ransomware, Threat Actor APT, Threat Intelligence, Threats and Vulnerabilities
FIN8 Group Using Modified Sardonic Malware for Deployment of BlackCat Ransomware      According to the Symantec Threat Hunter Team, the financially motivated threat actor known as FIN8 has been observed using ...
EclecticIQ Blog
Exposed Web Panel Reveals Gamaredon Group's Automated Spear Phishing Campaigns

Exposed Web Panel Reveals Gamaredon Group’s Automated Spear Phishing Campaigns

| | Cybercriminal, intelligence research, Malware, nation-state, Russia, Threat Actor APT, Threats and Vulnerabilities, Ukraine
Executive Summary On February 09, 2023, EclecticIQ analysts identified a spear phishing campaign targeting Ukrainian government entities like the Foreign Intelligence Service of Ukraine (SZRU) and Security Service of Ukraine (SSU). Analysts ...
EclecticIQ Blog
Dark Pink APT Group Strikes Government Entities in South Asian Countries

Dark Pink APT Group Strikes Government Entities in South Asian Countries

| | intelligence research, Malware, nation-state, Threat Actor APT, Threats and Vulnerabilities, Ukraine
Executive Summary  In February 2023, EclecticIQ researchers identified multiple KamiKakaBot malwares which are very likely used to target government entities in ASEAN (Association of Southeast Asian Nations) countries. The latest attacks, which ...
EclecticIQ Blog
Multi-Year Spearphishing Campaign Targets the Maritime Industry Likely for Financial Gain 

Multi-Year Spearphishing Campaign Targets the Maritime Industry Likely for Financial Gain 

| | Industry, intelligence research, Threat Actor APT, Threats and Vulnerabilities, trojan
Executive summary In May 2020 EclecticIQ Intelligence and Research Team published a report () on phishing lures impersonating the maritime industry. This research offers new insights and update on the topic. The ...
EclecticIQ Blog
A Year of the Russia-Ukraine War: Seven Types of Cyberattacks Used Against Ukraine

A Year of the Russia-Ukraine War: Seven Types of Cyberattacks Used Against Ukraine

| | intelligence research, Malware, nation-state, Threat Actor APT, Threats and Vulnerabilities, Ukraine
As EclecticIQ looks back at the year since Russia’s initial invasion of Ukraine, it is clear cyberattacks have been an important part of Russia’s arsenal. This assessment is based on the variety ...
EclecticIQ Blog
Three Cases of Cyber Attacks on the Security Service of Ukraine and NATO Allies, Likely by Russian State-Sponsored Gamaredon

Three Cases of Cyber Attacks on the Security Service of Ukraine and NATO Allies, Likely by Russian State-Sponsored Gamaredon

| | intelligence research, Malware, nation-state, Threat Actor APT, Threats and Vulnerabilities, Ukraine
Executive Summary EclecticIQ researchers observed multiple weaponized phishing emails probably targeting the Security Service of Ukraine (SSU), NATO allies like Latvia, and private companies such as Culver Aviation - a Ukrainian aviation ...
EclecticIQ Blog
Security Service of Ukraine and NATO Allies Potentially Targeted by Russian State-Sponsored Threat Actor

Security Service of Ukraine and NATO Allies Potentially Targeted by Russian State-Sponsored Threat Actor

| | Cybercriminal, intelligence research, Malware, nation-state, Russia, Threat Actor APT, Ukraine
New and Noteworthy: Sandworm APT Group Attacked Ukrainian News Agency Ukrinform by Data Wiper Malwares On January 18, 2023, the Computer Emergency Response Team of Ukraine (CERT-UA) identified a data wiper malware ...
EclecticIQ Blog
Long Term Analysis Illustrates How Risk Posed by a Vulnerability Changes as Exploits Develop Over Time

Long Term Analysis Illustrates How Risk Posed by a Vulnerability Changes as Exploits Develop Over Time

| | Cybercriminal, intelligence research, Malware, Ransomware, Threat Actor APT, Threats and Vulnerabilities
Introduction Vulnerability management is a popular cybersecurity strategy prioritizing known weaknesses. Much cybersecurity analysis focuses on a particular threat at a specific point in time, covering a narrow window of activity as ...
EclecticIQ Blog
Load more