Ramsay Malware Targets Air-Gapped Networks
The cyber-espionage toolkit is under active development. Ramsay Malware Targets Air-Gapped Networks
The cyber-espionage toolkit is under active development. Ramsay Malware Targets Air-Gapped Networks
The Russian-speaking APT acts as a support group for high-profile APTs like Sofacy and BlackEnergy. Zebrocy: A Russian APT Specializing in Victim Profiling, Access
The attack appears to be associated with a China-backed APT actor. Some ASUS Updates Drop Backdoors on PCs in ‘Operation ShadowHammer’
Evidence shows that three of the most destructive incidents seen in modern cyber-history are the work of one APT. NotPetya Linked to Industroyer Attack on Ukraine Energy Grid
Russian-speaking Turla has also racked up more victims in its latest APT campaign. Virus Bulletin 2018: Turla APT Changes Shape with New Code and Targets
The Iran-linked APT appears to be in a state of continuous tool development, analogous to the DevOps efforts seen in the legitimate software world. OilRig APT Continues Its Ongoing Malware Evolution
As reports of the NSA officially connecting WannaCry to North Korea surface, experts are saying developers failed to contain the ransomware before it was ready for deployment. Someone Failed to Contain WannaCry
Microsoft has found a file-transfer tool used by the Platinum APT that leverages Intel Active Management Technology to stealthily load malware onto networked computers. Platinum APT First to Abuse Intel Chip Management Feature
Cisco has uncovered a remote administration tool called Konni that it says has been used in attacks against government agencies and public organizations linked to North Korea. Stealthy RAT Targeting North Korea Since 2014
Mike Mimoso and Chris Brook recap the first day of this year’s Security Analyst Summit, including Mark Dowd’s memory corruption bug keynote, the digital archeology around Moonlight Maze, ATM hacking, and the Lazarus APT. Security Analyst Summit 2017 Day One Recap