Sednit update: How Fancy Bear Spent the Year
2017-12-26
The Sednit group — also known as Strontium, APT28, Fancy Bear or Sofacy — is a group of attackers operating since 2004, if not earlier, and whose main objective is to stealRead More →
CHM Badness Delivers a Banking Trojan
2017-12-21
Like good old Microsoft Office Macros, Compiled HTML (CHM) Help files have been utilized by malware authors for more than a decade to sneak malicious downloader code into files makingRead More →
Attackers Deploy New ICS Attack Framework “TRITON” and Cause Operational Disruption to Critical Infrastructure
2017-12-15
Mandiant recently responded to an incident at a critical infrastructure organization where an attacker deployed malware designed to manipulate industrial safety systems. The targeted systems provided emergency shutdown capability for industrialRead More →
MoneyTaker: in pursuit of the invisible
2017-12-11
Group-IB has uncovered a hacker group attacking banks in the USA and Russia. In less than two years, this group has conducted over 20 successful attacks on financial institutions andRead More →
RUSSIA’S ‘FANCY BEAR’ HACKERS EXPLOIT A MICROSOFT OFFICE FLAW—AND NYC TERRORISM FEARS
2017-11-09
AS DANGEROUS AS they may be, the Kremlin-linked hacking group known as APT28, or Fancy Bear, gets points for topicality. Last year, the group hacked the Democratic National Committee and theRead More →
Night of the Devil: Ransomware or wiper? A look into targeted attacks in Japan
2017-11-01
For several months Cybereason has been following the concerning rise of ONI, a family of ransomware involved in targeted attacks against Japanese companies. We suspect that the ONI ransomware wasRead More →
IoTroop Botnet: The Full Investigation
2017-10-30
our researchers discovered a new and massive IoT Botnet, ‘IoTroop’. Due to the urgency of this discovery, we quickly published our initial findings in order to alert the cyber security community. SinceRead More →
US warns of ongoing attacks on energy firms and critical infrastructure
2017-10-23
The United States Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) have issued a warning that malicious hackers are actively targeting government departments, and firms workingRead More →
Internet Explorer Bug Leaks What Users Type in the URL Address Bar
2017-09-27
Microsoft’s Internet Explorer browser is affected by a serious bug that allows rogue sites to detect what the user is typing in his URL address bar. This includes new URLsRead More →
Researchers Link CCleaner Hack to Cyberespionage Group
2017-09-21
Experts believe a state-sponsored hacker was behind the attack, which affected 2.2 million people. The recent attack that resulted in 2.2 million users installing infected versions of a popular Windows systemRead More →
