Chinese State-Sponsored Cyber Espionage Activity Targeting Semiconductor Industry in East Asia

Chinese State-Sponsored Cyber Espionage Activity Targeting Semiconductor Industry in East Asia

Executive Summary  EclecticIQ analysts identified a cyber espionage campaign where threat actors used a variant of HyperBro loader with a Taiwan Semiconductor Manufacturing (TSMC) lure, likely to target the semiconductor industry in ...
Flax Typhoon targeting Taiwan, Ransomware Emphasizing Linux-Centric Payloads

Flax Typhoon targeting Taiwan, Ransomware Emphasizing Linux-Centric Payloads

Flax Typhoon: Microsoft Uncovers Espionage Tactics Targeting Taiwan        Microsoft has detected malicious activities primarily targeting Taiwanese organizations by a nation-state actor named Flax Typhoon, which is believed to be ...
FIN8 Group Using Modified Sardonic Malware for Deployment of BlackCat Ransomware

FIN8 Group Using Modified Sardonic Malware for Deployment of BlackCat Ransomware

FIN8 Group Using Modified Sardonic Malware for Deployment of BlackCat Ransomware      According to the Symantec Threat Hunter Team, the financially motivated threat actor known as FIN8 has been observed using ...
Exposed Web Panel Reveals Gamaredon Group's Automated Spear Phishing Campaigns

Exposed Web Panel Reveals Gamaredon Group’s Automated Spear Phishing Campaigns

Executive Summary On February 09, 2023, EclecticIQ analysts identified a spear phishing campaign targeting Ukrainian government entities like the Foreign Intelligence Service of Ukraine (SZRU) and Security Service of Ukraine (SSU). Analysts ...
Dark Pink APT Group Strikes Government Entities in South Asian Countries

Dark Pink APT Group Strikes Government Entities in South Asian Countries

Executive Summary  In February 2023, EclecticIQ researchers identified multiple KamiKakaBot malwares which are very likely used to target government entities in ASEAN (Association of Southeast Asian Nations) countries. The latest attacks, which ...
Multi-Year Spearphishing Campaign Targets the Maritime Industry Likely for Financial Gain 

Multi-Year Spearphishing Campaign Targets the Maritime Industry Likely for Financial Gain 

Executive summary In May 2020 EclecticIQ Intelligence and Research Team published a report () on phishing lures impersonating the maritime industry. This research offers new insights and update on the topic. The ...
A Year of the Russia-Ukraine War: Seven Types of Cyberattacks Used Against Ukraine

A Year of the Russia-Ukraine War: Seven Types of Cyberattacks Used Against Ukraine

As EclecticIQ looks back at the year since Russia’s initial invasion of Ukraine, it is clear cyberattacks have been an important part of Russia’s arsenal. This assessment is based on the variety ...
Three Cases of Cyber Attacks on the Security Service of Ukraine and NATO Allies, Likely by Russian State-Sponsored Gamaredon

Three Cases of Cyber Attacks on the Security Service of Ukraine and NATO Allies, Likely by Russian State-Sponsored Gamaredon

Executive Summary EclecticIQ researchers observed multiple weaponized phishing emails probably targeting the Security Service of Ukraine (SSU), NATO allies like Latvia, and private companies such as Culver Aviation - a Ukrainian aviation ...
Security Service of Ukraine and NATO Allies Potentially Targeted by Russian State-Sponsored Threat Actor

Security Service of Ukraine and NATO Allies Potentially Targeted by Russian State-Sponsored Threat Actor

New and Noteworthy: Sandworm APT Group Attacked Ukrainian News Agency Ukrinform by Data Wiper Malwares On January 18, 2023, the Computer Emergency Response Team of Ukraine (CERT-UA) identified a data wiper malware ...
Long Term Analysis Illustrates How Risk Posed by a Vulnerability Changes as Exploits Develop Over Time

Long Term Analysis Illustrates How Risk Posed by a Vulnerability Changes as Exploits Develop Over Time

Introduction Vulnerability management is a popular cybersecurity strategy prioritizing known weaknesses. Much cybersecurity analysis focuses on a particular threat at a specific point in time, covering a narrow window of activity as ...