Security Affairs

MARCH 20, 2020

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election. ” concludes the report.

Phishing 145

Phishing Accountability Advertising DNS 145

Security Affairs

JANUARY 18, 2022

Trend Micro researchers spotted an elusive threat actor, called Earth Lusca, that targets organizations worldwide via spear-phishing and watering hole attacks. . The Winnti group was first spotted by Kaspersky in 2013, but according to the researchers the gang has been active since 2007. Both clusters served as a C&C server.

Cryptocurrency 136

Cryptocurrency Media Social Engineering Phishing 136

Cisco Security

OCTOBER 19, 2021

Phishing [ T1566 ]. Much of this traffic is comprised of suspicious DNS queries, which point to known or likely Command and Control sites. DNS BIND information disclosure attempts were also commonly encountered. CVE-2007-1036. Techniques seen. (in in order of frequency). Initial Access. Exploit Public-Facing Application.

Firewall 145

Firewall Authentication DNS Accountability 145

SecureList

SEPTEMBER 2, 2021

It was found in the wild in 2007 and since then it has been continually maintained and developed. Hooking module – hooks a hardcoded set of WinAPI and (if they exist) Mozilla DLL Hooking is used to perform web injects, sniff traffic and keyboard data and even prevent DNS resolution of certain domains. Main description.

Passwords 145

Passwords Encryption Banking Malware 145

eSecurity Planet

JULY 28, 2021

Founded in 2007, Guardtime is a network security company that specializes in deploying distributed, virtualized machines built to execute tasks with cryptographic proofs of correctness. More robust security for Domain Name Systems (DNS). KSI Innovator: Estonia’s Guardtime. Distributed PKI and multi-signature login capabilities.

Cybersecurity 136

Cybersecurity Cryptocurrency Technology Energy and Utilities 136

SecureList

NOVEMBER 26, 2021

The attackers obtain initial access to a system by sending a spear-phishing email to the victim containing a Dropbox download link. Moreover, underground forums often feature ads offering to post a malicious link on a popular website or selling tools to generate phishing pages automatically. cents per record). Qakbot banking Trojan.

Malware 133

Malware Banking Energy and Utilities Accountability 133

Herjavec Group

AUGUST 26, 2021

1998-2007 — Max Butler — Max Butler hacks U.S. In 2007, he is arrested and eventually pleads guilty to wire fraud, stealing millions of credit card numbers and around $86 million of fraudulent purchases. Investigators determined that two hackers, known as Datastream Cowboy and Kuji, are behind the attack. billion dollars in damages.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135